Re: Changing iptable policy

From: YAMABANA Kengou (junk_at_g13.org)
Date: 11/13/03 

Date: Thu, 13 Nov 2003 08:05:32 +0900

tjcreek55 wrote:
> I want to create a new chain and have the policy to changed to DROP.
> Each time I enter the command iptables -P FIRE DROP, I get the
> following error message: iptables: Bad built-in chain name
>
> However, if I change one of the default chains of INPUT, FORWARD or
> OUTPUT with the command iptables -P INPUT DROP, the command is
> accepted. What am I missing?

User-defined chains cannot have policies.

See
man iptables

You should add a catch-all rule to the end of your chain.
iptables -A FIRE DROP

YAMABANA Kengou
Gifu, Japan

Relevant Pages

  • Changing iptable policy
    ... I am trying to use set up a syslog server to capture syslog events ... I want to create a new chain and have the policy to changed to DROP. ... Each time I enter the command iptables -P FIRE DROP, ...
    (comp.os.linux.networking)
  • Re: AS-204 conspiracy - the Cliff Notes?
    ... > dodges addressing the who. ... > of a deliberate act, which means there has to be a who.) ... All three claim that the fire was caused by a deliberately ... > chain has been shown to be nonsense. ...
    (sci.space.history)
  • Re: AS-204 conspiracy - the Cliff Notes?
    ... of a deliberate act, which means there has to be a who.) ... All three claim that the fire was caused by a deliberately ... chain has been shown to be nonsense. ... scott, M.C., and LaDonna have all dodged the 'why' with great ...
    (sci.space.history)
  • Re: AS-204 conspiracy - the Cliff Notes?
    ... > dodges addressing the who. ... > of a deliberate act, which means there has to be a who.) ... All three claim that the fire was caused by a deliberately ... > chain has been shown to be nonsense. ...
    (sci.space.history)
  • Re: Is there a timer in unix ?
    ... chain and use one timer (an alerm handler) to fire them from the ...
    (comp.unix.programmer)