On Fri, December 2, 2005 12:42, Frank.Mayer@xxxxxxxxxxxxxxxxx wrote: >> The '-s 0/0 -d 0/0' matches buy nothing, they express the default. >> > If the "-s 0/0 -d 0/0 .... -j ACCEPT" matches express the default or > not does depend on the default, don't they? The default is 0/0 for both. > Of course, I could do without expressly stating source and > destination addresses when defining the generic rule, but I don't > think that's the point you wanted to make, is it? Since specifying -s 0/0 -d 0/0 is the same as not specifying these parameters, I think it is the point Jozsef wanted to make. Gr, Rob
