[Techtalk] moving to iptables

Hamster hamster at hamsternet.org
Sun Aug 10 01:55:04 EST 2003


> I've  a basic script up and running and I'm slowing closing all the 
> ports and adding entries one by one.

This is highly presumptuous of me to say, given that I know nothing of
your setup and what you want to achieve with iptables, but instead of slowly
closing ports off, have you considered changing the default policy on all
your tables to DROP and then just opening (-j ACCEPT) individual ports as
you need them?


