On Thursday 03 June 2004 4:06 pm, Martín Chikilian wrote:
> a.westendoerpf@xxxxxx wrote:
> >
> > My goal is to drop everything coming from the wlan by default. I do
> > this with:
> >
> > # iptables -t nat -P PREROUTING DROP
That is a terrible thing to do - it will drop all sorts of packets you don't
want dropped. Do not filter packets in the nat tables - filter them in the
filter tables.
I know it may look innocuous enough, but don't do it - it will mess up your
network.
Regards,
Antony.
--
Anyone that's normal doesn't really achieve much.
- Mark Blair, Australian rocket engineer
Please reply to the list;
please don't CC me.
