Hi, disc.group wrote:
> move line "$IPT -A firewall -j DROP" onto end of "firewall" section. > This script blocked ALL (tcp syn and all udp) at first place. You have > to blocked after ACCEPTED rules. > On Mon, 18 Mar 2002, Pierre B. Samson wrote: > > > I have this config and Ican't resolve my DNS lookups: > > $IPT -A firewall -j DROP > > $IPT -A INPUT -s 127.0.0.1/32 -d 127.0.0.1/32 -j ACCEPT > > $IPT -A INPUT -p udp --source-port 42 -j ACCEPT Strange - I thought this DROP rule applies to the "firewall" table, and the ACCEPT rules apply to the INPUT table? Markus -- "Ihre Meinung ist mir zwar widerlich, aber ich werde mich dafuer totschlagen lassen, dass sie sie sagen duerfen." - Voltaire
