On 12/21/22 16:41, Reindl Harald wrote:
the problem with your curent ruleset ist that you did copy&paste rules
from wherever without understanding what they are doing - that's the
worst case szart of a firewall ruleset
Hi Reindl,
"Copy and Paste"? You got me there. Guess who I
am copying and pasting from. ... I am copying
and pasting my own work.
At the bottom of my external rules, I have
the following:
# Set everything else to deny all other network access:
#
$tbls -A dsl-in -j LOG --log-level $debug --log-prefix "dsl-in
Everything Else "
$tbls -A dsl-in -j DROP
$tbls -A dsl-out -j LOG --log-level $debug --log-prefix "dsl-out
Everything Else "
$tbls -A dsl-out -j DROP
$tbls -A dsl-for -j LOG --log-level $debug --log-prefix "dsl-for
Everything Else "
$tbls -A dsl-for -j DROP
If something shows up in the log, I investigate.
Create a new rule is required. And yes I do copy
and paste from a previous rule set.
Thank you for all the help!
-T
