Vernon A. Fort wrote:
I agree, the simpler the better. With the cidr file, i ONLY want to
accept email from this filter service meaning do i need to put the
0.0.0.0/0 REJECT at the end of the list?
Vernon
The "reject" after the check_client_access takes care
rejecting any client not permitted by the cidr table (or other
rules), and makes it clear at a glance that nothing else will
be accepted.
That said, adding 0.0.0.0/0 REJECT at the end of the cidr
table isn't exactly wrong, just unnecessary.
-- Noel Jones