Hi,
> > I call this default policy at the beginning of my script (actually
> > SuSEFirewalls script):
>
> It doesn't matter, when you call it. Packets traverse chains from top
> to bottom. The 'bottom' is the default policy. (Well, it's listed on
> top, but you know what I mean.)
Oh sorry, totally misunderstood that :/
> > so why am i "-j ACCEPT" accepting it before that?
>
> In these scrambled outputs I did not wanted to sort again was a
> match-any-rule with -j ACCEPT in your OUTPUT (it isn't set here). So
> never a packet reached the bottom (policy) of your OUTPUT.
>
So since i ACCEPT the packets before they reach my default policy, i need to
get my traffic liek this?:
iptables -xv -L OUTPUT | grep "state NEW,RELATED,ESTABLISHED" | awk '{print
$2}'
Thanks, Mario
--
+++ NEU bei GMX und erstmalig in Deutschland: TÜV-geprüfter Virenschutz +++
100% Virenerkennung nach Wildlist. Infos: http://www.gmx.net/virenschutz
