On 24 Aug 2009, at 23:05, Mr Ritter wrote:
/sbin/iptables -A INPUT -p icmp --icmp-type 8 -m limit --limit 5/sec --limit-burst 5 -j ACCEPT
Allows icmp packets of type 8 limited to a certain amount in a certain rate, right?
On 24 Aug 2009, at 23:29, Stuart Jansen wrote:
iptables -A INPUT -i lo -j ACCEPT
Allows packets on the loopback interface, only, right?
/sbin/iptables -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
I don't see the 'm' flag in the man file. What exactly is this original option doing? What do related and established do?
I appears that Stuart's is a better way to allow all the packets through and Mr. Ritter's limits it to just icmp packets. Will I really be okay only allowing those packets through? icmp packets are errors, right? And since we are trying to limit returning packets, that should be sufficient?
smime.p7s
Description: S/MIME cryptographic signature
/* PLUG: http://plug.org, #utah on irc.freenode.net Unsubscribe: http://plug.org/mailman/options/plug Don't fear the penguin. */
