Provided by: sanewall-doc_1.0.2+ds-2_all bug

NAME

       sanewall-policy - set default action for a definition

SYNOPSIS

       policy action

DESCRIPTION

       The policy subcommand defines the default policy for an interface or router.

       The action can be any of the actions listed in actions for rules: sanewall-actions(5).

           Note
           Change the default policy of a router only if you understand clearly what will be
           matched by the router statement whose policy is being changed.

           It is common to define overlapping router definitions. Changing the policy to anything
           other than the default return may cause strange results for your configuration.

           Warning
           Do not set a policy to accept unless you fully trust all hosts that can reach the
           interface.  Sanewall CANNOT create valid "accept by default" firewalls. See this
           FireHOL bug report[1] for some more information and history.

SEE ALSO

           Sanewall program: sanewall(1)
           Sanewall configuration: sanewall.conf(5)
           interface definition: sanewall-interface(5)
           actions for rules: sanewall-actions(5)

AUTHOR

       Sanewall Team

COPYRIGHT

       Copyright © 2012, 2013 Phil Whineray <phil@sanewall.org>

NOTES

        1. FireHOL bug report
           http://sourceforge.net/tracker/index.php?func=detail&aid=927532&group_id=58425&atid=487692