> I've installed iptables-1.2.5 on a 2.4.5 kernel (with > most-of-pom) and it seems to work fine, except that i > can't set the default policy of any chain to REJECT. > However, I can add rules with the REJECT action. > Does anyone know where this problem is coming from?
It is the way things are. You can use DROP or ACCEPT as chain policies, and nothing else. You can write a "last rule in the chain" to implement whatever you want. I personally think generalization here would be good. best regards Patrick
