also sprach Ralf Döblitz <ralf@doeblitz.net> [2006.07.05.0835 +0200]: > >The things that can go wrong here are: > > > > - I accidentally delete or comment out one of the drop rules > > - "drop ! NEW" doesn't do the same as "!drop NEW" due to a bug > > - the universe folds in on itself > > > >Are there any other ones I am overlooking? > > How about "One rule fails to load for obscure reasons." ? iptables-restore, which is what I used, fortunately uses a transaction to commit new rules. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <madduck@debian.org> : :' : proud Debian developer and author: http://debiansystem.info `. `'` `- Debian - when you have better things to do than fixing a system the only real advantage to punk music is that nobody can whistle it.
Attachment:
signature.asc
Description: Digital signature (GPG/PGP)