I recently added these when redeveloping a client's firewall.
They are:
* Dan's Guardian proxy (with additional rule for delayed reply packets)
* NTP bi-directional (for peers)
* IPP broadcasts (from CUPS print servers)
* multicast DNS broadcasts (bi-directional)
* RIP broadcasts (bi-directional)
If you don't feel any of these are worthwhile, feel free to dump them. :-)
Paul
------------------------------------------------------------------------------
_______________________________________________
Shorewall-devel mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-devel
