Menu
▾
▴
Re: [webmin-l] Default firewall (IPTABLES) set-up for hosting
|
From: Andrey R. <anr...@ya...> - 2018-06-29 09:05:24
|
Greetings, Joaquim Homrighausen! > Not sure if I've asked this before (I just looked through my messages on > the list going back to 2006), but is there a reason why the FORWARD chain is set to "ALLOW/ACCEPT"? Why not? > I'm pretty sure that 99.9% of "hosting providers" are would not want to > allow IPTABLES forwarding. iptables does not forward anything, it only filter and modify packets. > I realize more than this is required, but still ... Without setting the kernel to forward packets, this is irrelevant. > I always find myself setting the default action to "DROP" for this chain in Webmin. So do i, but this is irrelevant in most cases. -- With best regards, Andrey Repin Friday, June 29, 2018 11:56:26 Sorry for my terrible english... |
