On 08/17/2010 08:32 PM, Genes MailLists wrote: > On 08/17/2010 11:23 PM, JD wrote: >>> g >> It's strange, but I assume that you start with a promiscuous >> filter, and then you add rules to button it up. >> I really do not know how these rules are consulted, >> and which rule takes precedence . >> > That is not standard practice no - it is the norm to lock it down > completely (deny) and then open up what you need. Well, what does your iptables start out with? -- users mailing list users@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
