From mboxrd@z Thu Jan  1 00:00:00 1970
From: Thomas Kirk <thomas@arkena.dk>
Subject: Re: How to stop imesh with iptables
Date: Thu, 12 Jun 2003 15:08:27 +0200
Sender: netfilter-admin@lists.netfilter.org
Message-ID: <20030612130827.GB2641@thomas.arkena.com>
References: <09B04A55822EFF4DA48D2E0BB2941D4A0D6E23@wardrive.citadelcomputer.com.au> <20030611200517.2278.qmail@web40306.mail.yahoo.com>
Mime-Version: 1.0
Return-path: <netfilter-admin@lists.netfilter.org>
Content-Disposition: inline
In-Reply-To: <20030611200517.2278.qmail@web40306.mail.yahoo.com>
Errors-To: netfilter-admin@lists.netfilter.org
List-Help: <mailto:netfilter-request@lists.netfilter.org?subject=help>
List-Post: <mailto:netfilter@lists.netfilter.org>
List-Subscribe: <https://lists.netfilter.org/mailman/listinfo/netfilter>,
	<mailto:netfilter-request@lists.netfilter.org?subject=subscribe>
List-Id: <netfilter.vger.kernel.org>
List-Unsubscribe: <https://lists.netfilter.org/mailman/listinfo/netfilter>,
	<mailto:netfilter-request@lists.netfilter.org?subject=unsubscribe>
List-Archive: <https://lists.netfilter.org/pipermail/netfilter/>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
To: Kevin McConnell <kevymac@yahoo.com>
Cc: netfilter@lists.netfilter.org

On Wed, Jun 11, 2003 at 01:05:17PM -0700, Kevin McConnell wrote:

> On a slightly OT note, just out of curiousity, am I
> the only person that denies everything by default and
> only allows the protocols through the firewall that I
> feel people need to use? This keeps the average joe
> from abusing bandwidth, but there will always be other
> people who figure out how to pierce the FW using other
> holes.

Nope thats the companypolicy where i work. Oh btw im the one that
formulates this policy ;-)

-- 
Venlig hilsen/Kind regards
Thomas Kirk
ARKENA
tlf/phone +4570233456
thomas(at)arkena(dot)com
Http://www.arkena.com


"Unfortunately, son, we Simpsons sometimes have to bend the rules
a little in order to hold our own." -- Homer Simpson