> $IPTABLES -A INPUT -p ALL -i $LAN_IFACE -s $LAN_IP_RANGE -j ACCEPT
you really want to allow unlimited access to your firewall from your internal network?
Just thought about this. What if I wanted to give just one box SSH access to the firewall (maintenance lets say).
It would be something like this:
$IPTABLES -A INPUT -p tcp -i $LAN_IFACE -s 192.168.1.90 -dport 22 -j ACCEPT
My head is getting swimmy. but the idea is just allow that box on my LAN, SSh access to the firewall.
Vacation, here I come!.
Cheers,
Jason
