I ran: iptables -L
and see this: Chain INPUT (policy ACCEPT) target prot opt source destination ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED ACCEPT icmp -- anywhere anywhere ACCEPT all -- anywhere anywhere REJECT all -- anywhere anywhere reject-with icmp-host-prohibited Does the REJECT all over-ride the ACCEPT all Would "DROP all" be better so people banging on the ports don't see a reply? I ran the gui tool to open ssh and it is in between ACCEPT all and REJECT all. Why does it work if there is a REJECT all after it? Thanks, -wes _______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
