is my iptables OK ... urgent
it supposed to block everything except ports 80 and 22
ipt="/sbin/iptables"
$ipt -F
$ipt -t nat -F
$ipt -t mangle -F
$ipt -P INPUT DROP
$ipt -P OUTPUT ACCEPT
$ipt -P FORWARD DROP
$ipt -A INPUT -i lo -j ACCEPT
$ipt -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
$ipt -A INPUT -d 0/0 -p tcp --dport 80 -j ACCEPT
$ipt -A INPUT -d 0/0 -p tcp --dport 22 -j ACCEPT
$ipt -t nat -A POSTROUTING -j MASQUERADE
$ipt -P INPUT DROP
any security problems ?
( eg. im totally clueless what it is postrouting -j masquerade used for )
and i'm leaving for holidays in 40 minutes :\
