A simple question
Thu Aug 19 03:36:52 CEST 2004
In almost all IP Tables articles I've found that the default policy of
all tables (INPUT,OUTPUT,FORWARD) set to DROP. I can understand it as
far as INPUT and FORWARD tables are concerned, but I do not understand
why should we set the default policy of OUTPUT chain to DROP. OUTPUT
chain is responsible for packets originating from the firewall itself.
Whay should we DROP it?
More information about the netfilter