[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Please critique my iptables-based firewall

On Thu, May 16, 2002 at 05:32:29PM -0400, LunarFox wrote:
>echo 1 > /proc/sys/net/ipv4/ip_forward			# Enable masq below
I'm not an iptables expert, but I would suggest that  this should be
the very last thing in the script, after all the rules have been set
up.  Otherwise you've created a race condition that could
(conceivably) cause a lot of pain.


Attachment: firegate.quU9MV
Description: Binary data

Attachment: pgpXYLRO4TwRf.pgp
Description: PGP signature

Reply to: