EgressFilterung
EgressFilterung, commonly referred to as egress filtering, is a security practice that controls and monitors outbound network traffic leaving an organization’s network. Its primary purpose is to prevent data exfiltration, unauthorized communications with command and control servers, and the spread of malware, while enforcing policies for external services and destinations. Policies are typically defined by destination (IP, domain, or hostname), protocol, port, application type, and content characteristics. Organizations often adopt a default-deny posture with explicit allow-lists for approved destinations and services.
Implementation is usually applied at network egress points such as perimeter firewalls, dedicated egress gateways or
Challenges include encrypted traffic (TLS/HTTPS), the use of VPNs and tunneled services, reliance on cloud-based tools,