On Thu, Feb 03, 2000 at 12:32:49PM -0500, Jon Earle wrote:
> >Since the default ploicy of all chains does not include the possibility to
> >log, you need to add a "deny all" rule at the end of each chain and set the
> >log flag there. Then no packet which is rejected by ipchains should be
> >missed.
>
> Wouldn't setting the default policy of the chain at the start of the chain
> accomplish the same effect?
As i said you can not set the "log" flag for the default policy, so if you
"reject" or "deny" as the default policy those packages wont be logged.
Greetings
Bernd
--
(OO) -- [EMAIL PROTECTED] --
( .. ) ecki@{inka.de,linux.de,debian.org} http://home.pages.de/~eckes/
o--o *plush* 2048/93600EFD eckes@irc +497257930613 BE5-RIPE
(O____O) When cryptography is outlawed, bayl bhgynjf jvyy unir cevinpl!
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
