firewalld's default ruleset - no 'policy drop'

10 Jul 2022


      Hello,
Comparing the default nft rulesets of firewalld and ufw (on Debian 11), I note that ufw provides a qualified 'policy drop' for input, but firewalld does not.
Isn't this less secure, and shouldn't it?
With thanks,
Gareth

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

firewalld's default ruleset - no 'policy drop'