>Since the default ploicy of all chains does not include the possibility to
>log, you need to add a "deny all" rule at the end of each chain and set the
>log flag there. Then no packet which is rejected by ipchains should be
>missed.
Wouldn't setting the default policy of the chain at the start of the chain
accomplish the same effect?
-----------------------------------------------------------------
Jon Earle (613) 612-0946 (Cell)
HUB Computer Consulting Inc. (613) 830-1499 (Office)
http://www.hubcc.ca 1-888-353-7272 (Within Canada/US)
"God does not subtract from one's alloted time on Earth,
those hours spent flying." --Unknown
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
