iptables question

Genes MailLists lists at sapience.com
Wed Aug 18 03:32:24 UTC 2010


On 08/17/2010 11:23 PM, JD wrote:
>>   g
> It's strange, but I assume that you start with a promiscuous
> filter, and then you add rules to button it up.
> I really do  not know how these rules are consulted,
> and which rule takes precedence .
> 

 That is not standard practice no - it is the norm to  lock it down
completely (deny) and then open up what you need.


More information about the users mailing list