.
Note to self - Grin with cat attached — LiveJournal
Previous Entry Next Entry
Note to self Sep. 2nd, 2004 08:00 pm
If you're going to run
${IPTABLES} -P INPUT DROP

it helps to run
${IPTABLES} -A INPUT -i lo -j ACCEPT
too


Such is the wonder of being a techy. You have so many more esoteric things to be dumb about.

Still, at least you don't have to outrun the tiger.

From: kaet
Date: September 3rd, 2004 - 01:04 am (Link)
Scary things, firewalls. That and buggering with ssh usually results in me having to go on a visit to the other side of the city.
From: flewellyn
Date: September 3rd, 2004 - 12:52 pm (Link)
Yes, I find it helpful to NOT change firewall rules remotely. And definitely not to set -P drop before adding other ACCEPT rules. Tricky things, firewalls.