iptable in fc5
Jay Cliburn
jacliburn at bellsouth.net
Mon May 15 21:53:32 UTC 2006
On Mon, 2006-05-15 at 16:51 -0500, Hongwei Li wrote:
> I want to ask another question -- Why do we need the last line in the file
> iptables:
> -A RH-Firewall-1-INPUT -j REJECT --reject-with icmp-host-prohibited
>
> If I comment it out, then everything works. Will that cause firewall actually
> not functioning?
If you remove that line, nothing will get rejected. It's the cactchall
rule.
More information about the fedora-list
mailing list