Trying to get ping to work through iptables.

Martin McCormick martin at
Tue Jan 6 17:57:47 UTC 2009

Rashkae writes:
> The default policy is applied only if no other rules matched.  In
> effect, it's the same as a rule that is permanently appended to the end
> of the chain.  Also, it's a rule that will still be in effect if the
> entire chain is removed.  That can be double edged.  If your sitting on
> a workstation, you can clear the iptables chain and input an entire new
> one without dropping your firewall.  Conversely, on a remote access
> system, if you clear the Input chain, you will lock yourself out.

	Been there; Done that. It was on a FreeBSD system which
uses ipfw instead of iptables.

	Thanks greatly for the clarification.

Martin McCormick

More information about the ubuntu-users mailing list