As David said "Opinion". Not all of us believe that to be the case. -----Original Message----- From: netfilter-admin@xxxxxxxxxxxxxxxxxxx [mailto:netfilter-admin@xxxxxxxxxxxxxxxxxxx] On Behalf Of David Cannings Sent: Monday, March 08, 2004 10:50 AM To: netfilter@xxxxxxxxxxxxxxxxxxx Subject: Re: Firewall Script Help On Monday 08 March 2004 18:47, Christopher Davis wrote: > I am trying to block incoming traffic on the INPUT chain with reserved > ip's. I am still able to connect to the server from a reserved ip. > Below is my entire script if someone would like to review and comment > -- all coments welcome! This is for a webserver -- port 80 and ssh > port 22 only. I have not yet included the logging option so those > options are commented out at this point... Just a quick point, it is (in my opinion at least) far easier to read your firewall rules if they're output from iptables itself. Following through the script is harder. # iptables -L -v David
