Changeset 4660f56 for postlfs/security
- Timestamp:
- 08/24/2023 02:26:54 PM (9 months ago)
- Branches:
- 12.0, 12.1, ken/TL2024, ken/tuningfonts, lazarus, plabs/newcss, python3.11, rahul/power-profiles-daemon, renodr/vulkan-addition, trunk, xry111/llvm18
- Children:
- 5a0c70cb
- Parents:
- 746aa49
- File:
-
- 1 edited
Legend:
- Unmodified
- Added
- Removed
-
postlfs/security/iptables.xml
r746aa49 r4660f56 286 286 iptables -A INPUT -m conntrack --ctstate ESTABLISHED,RELATED -j ACCEPT 287 287 288 # Drop any incoming MULTICAST or BROADCAST packet before logging: 289 # The box outputs several of them when using netbios or mDNS, and those 290 # appear immediately as incoming, which clutters the log. 291 iptables -A INPUT -m addrtype --dst-type BROADCAST,MULTICAST -j DROP 292 288 293 # Log everything else. 289 294 iptables -A INPUT -j LOG --log-prefix "FIREWALL:INPUT "
Note:
See TracChangeset
for help on using the changeset viewer.