Re: loop back iptables

To: debian-user@lists.debian.org
Subject: Re: loop back iptables
From: Jonathan Dowland <jmtd@debian.org>
Date: Wed, 9 Oct 2013 14:24:20 +0100
Message-id: <[🔎] 20131009132420.GC20003@debian>
In-reply-to: <[🔎] CAH_OBidd7pBXesm7BptMDnrfGDe2W_e_GtRK3M24TDLJBYtU-Q@mail.gmail.com>
References: <[🔎] CAHJcRbUdkq6EJ-W3kgJ3d5yBVRx4qg+2-Q2Doa9_RgXktyMFLA@mail.gmail.com> <[🔎] 20131009001237.GA4117@randomstring.org> <[🔎] CAH_OBidd7pBXesm7BptMDnrfGDe2W_e_GtRK3M24TDLJBYtU-Q@mail.gmail.com>

On Wed, Oct 09, 2013 at 04:24:18AM -0400, shawn wilson wrote:
> This will do nothing unless you have a default DROP policy

…which generally speaking I would advise against. If you have a default
ACCEPT policy and your last rule is a DROP, you are resilient against
accidentally issuing "iptables -F" (or having something else
accidentally do that). With a default DROP policy and no rules, you're
locked out. (on your default interface e.g. eth0, em0, en0, at least)

Reply to:

References:
- loop back iptables
  - From: james gray <kmzftq@gmail.com>
- Re: loop back iptables
  - From: Dan Ritter <dsr@randomstring.org>
- Re: loop back iptables
  - From: shawn wilson <ag4ve.us@gmail.com>

Prev by Date: Re: which MTA to choose for a simple client?
Next by Date: Re: which MTA to choose for a simple client?
Previous by thread: Re: loop back iptables
Next by thread: Re: loop back iptables
Index(es):
- Date
- Thread