On Tue, Feb 18, 2003 at 07:05:52AM -0800, Paul Johnson wrote: > On Mon, Feb 17, 2003 at 09:28:05PM -0600, Nathan E Norman wrote: > > (that seems not very useful). By "deny" do you mean REJECT or DROP? > > In any case, I _think_ the answer to your question has something to do > > with making the default policy DROP (but I'm not sure). > > Though RFCs would suggest the standards-compliant route to achieve the > same goal would be REJECT, not DROP.
That's true, however you can't set the default policy to REJECT (you have to create a REJECT target ans do it yourself). This applies to iptables. In any case, the OP was rather unclear on what he wanted. -- Nathan Norman - Incanus Networking mailto:[EMAIL PROTECTED] Just because an idea originated at "redhat" does not mean it is evil. -- Sean 'Shaleh' Perry
msg31567/pgp00000.pgp
Description: PGP signature
