->
-> I've also got rules on defender which allow specific traffic to it, with a
-> big DENY at the end. The default input and output policies will have to be
-> ACCEPT or the whole deal is off.
->
Isn't it generally a good idea to first DENY everything, and then
allow only the traffic you want to come in/out/forward...
ie... as the start:
/sbin/ipchains -P forward -j DENY
/sbin/ipchains -P input -j DENY
/sbin/ipchains -P output -j REJECT
Then, the rest of "ACCEPT" rule sets.
Regards,
-t
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
