Provided by: sanewall-doc_1.0.2+ds-2_all
NAME
sanewall-policy - set default action for a definition
SYNOPSIS
policy action
DESCRIPTION
The policy subcommand defines the default policy for an interface or router. The action can be any of the actions listed in actions for rules: sanewall-actions(5). Note Change the default policy of a router only if you understand clearly what will be matched by the router statement whose policy is being changed. It is common to define overlapping router definitions. Changing the policy to anything other than the default return may cause strange results for your configuration. Warning Do not set a policy to accept unless you fully trust all hosts that can reach the interface. Sanewall CANNOT create valid "accept by default" firewalls. See this FireHOL bug report[1] for some more information and history.
SEE ALSO
Sanewall program: sanewall(1) Sanewall configuration: sanewall.conf(5) interface definition: sanewall-interface(5) actions for rules: sanewall-actions(5)
AUTHOR
Sanewall Team
COPYRIGHT
Copyright © 2012, 2013 Phil Whineray <phil@sanewall.org>
NOTES
1. FireHOL bug report http://sourceforge.net/tracker/index.php?func=detail&aid=927532&group_id=58425&atid=487692