-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 gabrix : > I have default drop on all INPUT,OUTPUT,FORWARD iptables > chains.What if i default drop also the prerouting chain in the > iptables script and than accepting connections for services on my > inside lan pcs ? Thanks ! Gabriele > > I think there is nothing difference in the prerouting chain . You can just set it to drop any package by default and allow some special kinds of package to through your box ! -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFFHKI47tZp58UCwyMRAjyiAJ4qu/50TZBwZfx56I4HNLN7Mbn69QCePAL9 tVagNtndW/9YuoBTnJFoUKI= =qoXZ -----END PGP SIGNATURE-----
