Home page logo
/

firewall-wizards logo Firewall Wizards mailing list archives

Re: [iptables] Zone based rules
From: Jimmy Thrasibule <thrasibule.jimmy () gmail com>
Date: Wed, 10 Apr 2013 00:08:25 +0200

In can change the rules order but this will not solve the problem.
What about using the RETURN target instead of ACCEPT, and denying
everything in the zone-specific chain?
I believe it would solve the problem.

Yes indeed, RETURN can do the trick.

Having an IN and an OUT chain for each zone would mean more efficient
processing also.

I'm aware of that but I wanted to have only one entry point for each
zone.

--
Jimmy

Attachment: signature.asc
Description: This is a digitally signed message part

_______________________________________________
firewall-wizards mailing list
firewall-wizards () listserv icsalabs com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]