Re: a small quick and dirty solution

Linux Netfilter discussions
 help / color / mirror / Atom feed

From: Payal Rathod <payal-iptables@staticky.com>
To: "anantharaman.iyer" <ananth@mail.mynetsec.com>
Cc: Netfilter ML <netfilter@lists.netfilter.org>
Subject: Re: a small quick and dirty solution
Date: Thu, 14 Aug 2003 12:21:31 +0530	[thread overview]
Message-ID: <20030814065131.GB1761@linux.local> (raw)
In-Reply-To: <20030812105914.M60420@mail.mynetsec.com>

On Tue, Aug 12, 2003 at 04:29:14PM +0530, anantharaman.iyer wrote:
> Generally the default policy of any firewall is kept as "Default Deny" and 
> then the administrator can open up the required ports. So any packet hitting 
[...]

Ok. Great. Then does this mean,

$IPTABLES -A INPUT -p tcp -s 0/0 -d $STATIC_IP --dport 21 -j ACCEPT

$IPTABLES -P INPUT DROP


that all connection except to port 21 of external ip are not allowed.

Also should default rule be kept first or last as I have done below?
Or does it not matter in my case?

Thanks a lot for the explanation and bye.

With warm regards,
-Payal

-- 
"Visit GNU/Linux Success Stories"
http://payal.staticky.com
Guest-Book Section Updated.

     prev parent reply	other threads:[~2003-08-14  6:51 UTC|newest]

Thread overview: 4+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2003-08-12  7:57 a small quick and dirty solution Payal Rathod
2003-08-12 10:58 ` anantharaman.iyer
2003-08-12 10:59 ` anantharaman.iyer
2003-08-14  6:51   ` Payal Rathod [this message]

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=20030814065131.GB1761@linux.local \
    --to=payal-iptables@staticky.com \
    --cc=ananth@mail.mynetsec.com \
    --cc=netfilter@lists.netfilter.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox