Ok, so if I have no firewall rules at all, then system is wide open, but when I define 1 rule then the implicity deny everything else kicks in?
Thanks! -----Original Message----- From: An-Cheng Huang [mailto:[EMAIL PROTECTED] Sent: Saturday, December 08, 2007 9:33 PM To: [EMAIL PROTECTED] Cc: vyatta-users@mailman.vyatta.com Subject: Re: [Vyatta-users] Setting up Firewall Rules Hi Todd, The firewall rules are evaluated in sequence, and there is an implicit "deny everything" rule at the end of each rule set. So you can add whatever you want to allow to a rule set, and anything else will be dropped by the implicit rule at the end. Hope this helps. An-Cheng [EMAIL PROTECTED] wrote: > I wasn't sure, but when setting up firewall rules, would it be best to > set a rule #1 to deny everything, then start rules at like #10 to open > say port 80 for destination xyz source 0.0.0.0/0? Or does vyatta deny > everything by default? > > > > Todd Worden > > Software Developer > > > > Growing Technologies > > P: 434-296-1500 > > E: [EMAIL PROTECTED] > <mailto:[EMAIL PROTECTED]> > > > > > ------------------------------------------------------------------------ > > _______________________________________________ > Vyatta-users mailing list > Vyatta-users@mailman.vyatta.com > http://mailman.vyatta.com/mailman/listinfo/vyatta-users __________ NOD32 2711 (20071207) Information __________ This message was checked by NOD32 antivirus system. http://www.eset.com _______________________________________________ Vyatta-users mailing list Vyatta-users@mailman.vyatta.com http://mailman.vyatta.com/mailman/listinfo/vyatta-users
