Mine (I've just checked with wc) are 377, 28, 34 lines respectively. That includes the blank lines between chains (all 50 of them in the first case).
I'm using shorewall to create them.
That covers... General policy rules: allow outgoing, block incoming etc. (I've actually got three zones, including the firewall as one. So there are 7 policies in total) Specific overrides: redirect incoming SSH, DNS, SMTP.
And a whole load of "generic" modules that Shorewall creates, to control assorted "standard" options, such as SSH, DNS, SMB, etc. (So the DNS rule mentioned above actually just calls the generic DNS one. Which is two lines long).
1000 lines, for home use, seems excessive!
But possibly the best way to debug it is for somebody to walk through them by hand.
![[personal profile]](https://www.dreamwidth.org/img/silk/identity/user.png){kind=small}
Re: I'm going to regret this...
Date: 2005-02-02 05:31 am (UTC)That includes the blank lines between chains (all 50 of them in the first case).
I'm using shorewall to create them.
That covers...
General policy rules: allow outgoing, block incoming etc. (I've actually got three zones, including the firewall as one. So there are 7 policies in total)
Specific overrides: redirect incoming SSH, DNS, SMTP.
And a whole load of "generic" modules that Shorewall creates, to control assorted "standard" options, such as SSH, DNS, SMB, etc. (So the DNS rule mentioned above actually just calls the generic DNS one. Which is two lines long).
1000 lines, for home use, seems excessive!
But possibly the best way to debug it is for somebody to walk through them by hand.