should this not be the second line line ?
first the echo 1 > /proc/sys/net/ipv4/ip_forward
then all the drop statements and then the allow rules ?
I will probably move the DROP policy line back towards the top. I did it this way so I could be sure I didn't lock myself out before I could ALLOW myself back in.
-- Andrew Gaffney
-- [EMAIL PROTECTED] mailing list