Current time: 12-23-2024, 07:11 PM Hello There, Guest! (LoginRegister)


Post Reply 
iptables - policy
Author Message
womd Offline
Junior Member
*

Posts: 13
Joined: Mar 2009
Reputation: 0
Post: #1
iptables - policy
hi !

i found that on a default-install iptables-default-policy of INPUT/FORWARD/OUTPUT - chain is ACCEPT

the cains ISPCP_INPUT / ISPCP_OUTPUT have rules to accept for sevice-ports

in my understanding, INPUT / OUTPUT - CHAIN - default - policy should be DROP.

is there something wrong with my installation, or did i misunderstand something ?
03-31-2009 05:20 PM
Find all posts by this user Quote this message in a reply
kilburn Offline
Development Team
*****
Dev Team

Posts: 2,182
Joined: Feb 2007
Reputation: 34
Post: #2
RE: iptables - policy
The iptables rules in ISPCP_{INPUT,OUTPUT} chains are used only to count traffic, but do not ACCEPT or DROP/REJECT any package.

Thus, there's no firewall enabled by default, but if you want to modify the script so traffic is accepted/rejected after counting it's up to you Smile
03-31-2009 10:48 PM
Visit this user's website Find all posts by this user Quote this message in a reply
womd Offline
Junior Member
*

Posts: 13
Joined: Mar 2009
Reputation: 0
Post: #3
RE: iptables - policy
ok, i see. thank you
03-31-2009 11:44 PM
Find all posts by this user Quote this message in a reply
Post Reply 


Forum Jump:


User(s) browsing this thread: 1 Guest(s)