On Monday 08 July 2002 17:22, Antony Stone wrote: > On Monday 08 July 2002 3:56 pm, Antony Stone wrote: > > On Monday 08 July 2002 3:46 pm, Lukas Ruf wrote: > > > iptables -P INPUT ACCEPT > > > iptables -P OUTPUT ACCEPT > > > iptables -P FORWARD ACCEPT > > I'd prefer to see: > iptables -P INPUT DROP > iptables -P OUTPUT DROP > iptables -P FORWARD DROP > > Then you add in the rules for the stuff your definitely know you want to > allow.
Certainly. What about default policies for the nat and mangle tables? Or perhaps you find that it doesn't belong here? Jan Humme.
