On 08/17/2010 08:32 PM, Genes MailLists wrote:
> On 08/17/2010 11:23 PM, JD wrote:
>>> g
>> It's strange, but I assume that you start with a promiscuous
>> filter, and then you add rules to button it up.
>> I really do not know how these rules are consulted,
>> and which rule takes precedence .
>>
> That is not standard practice no - it is the norm to lock it down
> completely (deny) and then open up what you need.
Well, what does your iptables start out with?
--
users mailing list
users@lists.fedoraproject.org
To unsubscribe or change subscription options:
https://admin.fedoraproject.org/mailman/listinfo/users
Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
