Re: iptables for 1 interface pc and other question

To: debian-firewall@lists.debian.org
Subject: Re: iptables for 1 interface pc and other question
From: "Benedict Verheyen" <linux4bene@pandora.be>
Date: Fri 17 Jan 2003 16:25:40 +0100
Message-id: <[🔎] 20030117152615.780C61FA48@murphy.debian.org>

On Fri, Jan 17, 2003 at 01:24:13PM +0000, Jamin W. Collins wrote:

Thanks Jamin for your answers.

>Your script only works with one of the three default tables (filter),
>there are two others (nat and mangle).

Yes, but as i understand i don't need to add rules to the nat and mangle table to stop incoming traffic unless i want to stop it earlier as you say (prerouting). So my output should be changed by mangle-output and my input by
mangle-prerouting to have the earliest result?

>I would include the other two tables and make use of them.  Unwanted
>traffic should be stopped at the earliest opportunity.  Which would be
>the PREROUTING chain in the mangle table.
See above

Do i need to specify both udp and tcp for most of the services i have listed?

Thanks,
Benedict

Reply to:

Prev by Date: Multiple dhcp client interfaces
Next by Date: Re: iptables for 1 interface pc and other questions
Previous by thread: Re: Multiple dhcp client interfaces
Next by thread: Where to place firewall files?
Index(es):
- Date
- Thread