In Example1, rule #2 will never be hit. So Example2 is probably what you want if you want to except only port 80 to this machine and deny all others.
-Damon- On Wed, 15 Jun 2005, Alexander Salmin wrote:
Hi, I guess this question is just a silly one for experts, but I can't find the answer anywhere so I'm asking you guys. In what order do the assigned rules apply in this script? # Example1 iptables -A INPUT -j DROP # rule #1 iptables -A INPUT --dport 80 -j ACCEPT # rule #2 #Example2 iptables -A INPUT --dport 80 -j ACCEPT # rule1 iptables -A INPUT -j DROP # rule2 Will the both examples produce the same result? Or will rule2 in example 2 make rule1 in example2 vanish because it's telling the system to drop all?
