If I make a mistake in agt.rules such as:
input accept proto tcp port 1024- on eth0
agt -t won't tell it's wrong.
After running agt, polices will be set (ex. drop all input)
but ohter rules won't.
Imaginge now configuring firewall via SSH.
It's very frustrating to do hardware reboot each time it
Sure I can set all policies to accept when testing new
rules, but wouldn't it be better if agt when encoutering
an error set all to accept by default. Or make a special
rule that will always be applied such as:
input accept proto tcp port ssh from myhost
So that admin could always correct previous mistakes in