ipmasq anywhere?
I've installed the debian ipmasq package and am using its firewall.
While analyzing it's rules I noticed that all my interfaces (eth0, eth1, lo) are called 'anywhere' when I view iptables -L.
1) Does this cause my firewall to be loose?
2) Does anyone know why this is?
3) Where is this anywhere defined?
/etc/ipmasq/rules/cat * | grep anywhere
did not succeed.
Gilion
PS, an example:
#: Accept all packets coming in from the loopback interface
/sbin/iptables -A INPUT -j ACCEPT -i lo
#: Deny and log all packets trying to come in from a 127.0.0.0/8 address
#: over a non-'lo' interface
/sbin/iptables -A INPUT -j LOG -i ! lo -s 127.0.0.1/255.0.0.0
/sbin/iptables -A INPUT -j DROP -i ! lo -s 127.0.0.1/255.0.0.0
results in:
Chain INPUT (policy DROP)
target prot opt source destination
ACCEPT all -- anywhere anywhere
LOG all -- 127.0.0.0/8 anywhere LOG level warning
DROP all -- 127.0.0.0/8 anywhere
|