Provided by: sanewall-doc_1.0.2+ds-2_all bug

NAME
       sanewall-policy - set default action for a definition


SYNOPSIS

       policy action


DESCRIPTION
       The policy subcommand defines the default policy for an interface or router.

       The action can be any of the actions listed in actions for rules: sanewall-actions(5).

           Note

           Change the default policy of a router only if you understand clearly what will be matched by the
           router statement whose policy is being changed.

           It is common to define overlapping router definitions. Changing the policy to anything other than the
           default return may cause strange results for your configuration.

           Warning

           Do not set a policy to accept unless you fully trust all hosts that can reach the interface.
           Sanewall CANNOT create valid "accept by default" firewalls. See this FireHOL bug report[1] for some
           more information and history.


SEE ALSO
           Sanewall program: sanewall(1)
           Sanewall configuration: sanewall.conf(5)
           interface definition: sanewall-interface(5)
           actions for rules: sanewall-actions(5)


AUTHOR
       Sanewall Team


COPYRIGHT
       Copyright © 2012, 2013 Phil Whineray <phil@sanewall.org>


NOTES
        1. FireHOL bug report
           http://sourceforge.net/tracker/index.php?func=detail&aid=927532&group_id=58425&atid=487692

Sanewall 1.0.2                                  Built 01 Jun 2013                        POLICY COMMAND: SANE(5)