A simple question
Sudheer Divakaran
sudheer@svw.com
Thu Aug 19 03:36:52 CEST 2004
Hi,
In almost all IP Tables articles I've found that the default policy of
all tables (INPUT,OUTPUT,FORWARD) set to DROP. I can understand it as
far as INPUT and FORWARD tables are concerned, but I do not understand
why should we set the default policy of OUTPUT chain to DROP. OUTPUT
chain is responsible for packets originating from the firewall itself.
Whay should we DROP it?
Thanks,
Sudheer
More information about the netfilter
mailing list