Why does firewall allow http response packets to reach my host at port, say, 48406, though my host does not allow any inbound connection?

firewall tcp

My host is firewalled by the rule that allows everything outbound and nothing inbound. If I make a http request to some website, the website server will respond to some port on my host, for example, 48406.

Now, port 48406 is not allowed in the inbound rule, why are the response packets allowed to pass through the wall?


Because the firewall can identify it as part of an established and allowed connection (outbound port 80). This is a fundamental requirement for a firewall, otherwise you wouldn't be able to communicate at all, as source ports are usually random for such kind of connections.

Related

How can I convert a iSCSI system disk from XenServer to another format
DNS isues with AWS Route53 hosted zone / nameservers
Why doesn't the NFS client work in Windows 10 PRO?
Error in connecting to HyperV Server
Force HTTPS on AWS ELB
How to get IP address of a docker swarm node?
DMARC: must rua email match domain?
Best practices for backing up to Amazon s3 and a NAS
Should I use 'cards' or 'a card'? [duplicate]
Why does "savior" have an "i"?
What's the term for an unsecured wifi network that requires logging in through a browser? [closed]
"Whether they are congruent"