NTP, ntpdate, and ISP-based firewall

jdow jdow at earthlink.net
Thu Mar 4 21:48:57 UTC 2004


From: "Rick Stevens" <rstevens at vitalstream.com>

> jdow wrote:
> > That depends entirely on the rules that are setup, of course.
> 
> And if you have iptables log the rejects.

Rick, it is a poor system administrator who does not log firewall
activity. I built "drop_and_log_it" and "reject_and_log_it" type
rules and use them. Of course, I prefer to be mostly invisible from
the outside so I simply drop and log the packets that bounce off my
firewall and disappear into the infinite bit bucket in the sky.

{^_^}





More information about the users mailing list