On Sat, Aug 15, 2015 at 7:45 AM, <meino.cra...@gmx.de> wrote: > Last chance: Installing a fully functional chrooted Linux, setup > some handcrafted iptables/ipset/sidmat stuff (which I still have > to do) and...get a "Yes, network is shared on kernel level" as answer > from this thread. :) > And I got this answer...YEAH! :)) >
Yup. If your goal is to block outgoing connections to selected IPs then you just need to have iptables/etc installed. Doing it from a chroot is probably a good a solution as any. You could also go the prefix route, though that is trickier. Neither is any better, so I'd stick with simple and use the chroot. -- Rich