[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Strange firewall logs

Micah Anderson <micah@riseup.net> writes:
> Ah, looking at my firewall I've got:
> -A output -s -d -p 17 -j ACCEPT
> -A output -s -d -j REJECT -l
> -A output -s -d -j REJECT -l
> -A input -s -d -j DENY -l
> -A input -s -d -j DENY -l
> So from what you are saying I should add:

You should stop filtering loopback, as this is useless (one exception:
It is possible to trick a malconfigured proxy into talking to
internal services via 'lo'.) 

> Should these be allowable from to anywhere? is a 'virtual' interface which in reality is always the
machine itself. 


Reply to: