Re: [iptables] Zone based rules

[Jimmy Thrasibule <thrasibule.jimmy () gmail com>]

> > In can change the rules order but this will not solve the problem.
> What about using the RETURN target instead of ACCEPT, and denying
> everything in the zone-specific chain?
> I believe it would solve the problem.

Yes indeed, RETURN can do the trick.

> Having an IN and an OUT chain for each zone would mean more efficient
> processing also.

I'm aware of that but I wanted to have only one entry point for each
zone.

--
Jimmy

Attachment: signature.asc
Description: This is a digitally signed message part

_______________________________________________
firewall-wizards mailing list
firewall-wizards () listserv icsalabs com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards