Why is IPTABLES so complicated

From: Mike Harrison (mharrison_at_aol.com)
Date: 12/31/03 

Date: Wed, 31 Dec 2003 01:26:06 -0500

compare to creating an access-list on a pix to permit an inbound port, all
you do is enter one line of course the pix by default permits all outbound
traffic.

but on IPTABLES its requires lots of things. why not make IPTABLES configs
similar to a pix style.

Relevant Pages

  • Re: pix 501 - Problem Routing Requests from inside to outside networks
    ... access-list inside_access_in permit icmp any any ... Christoph Gartmann ... ultimately the configuration I posted did work. ... was that I configured a client's dns that of the gateway, pix 501. ...
    (comp.dcom.sys.cisco)
  • Re: Basic ACL Question - Outbound Traffic
    ... For all the other PIX models, although there is no access-group applied ... is not allowed to flow until the user sets up NAT or static. ... be performed to permit everything outbound from your network (of course ...
    (comp.dcom.sys.cisco)
  • Re: Remote access vpn using PPTP
    ... I have a PIX 515e version 6.3.The PIX is front end firewall ... access-list outside_access_in permit udp any host 202.93.208.166 eq 1723 ... no sysopt connection permit-pptp ...
    (comp.security.firewalls)
  • Re: site to site VPN CISCO PIX
    ... "I want to permit the access only PIX 515 to PIX 501 and deny for PIX ... "...and then do NOT permit anything from the 501 LAN to the 515 LAN in ... And we have the timeout command to help in such ...
    (comp.dcom.sys.cisco)
  • Re: Why is IPTABLES so complicated
    ... > compare to creating an access-list on a pix to permit an inbound port, ... > but on IPTABLES its requires lots of things. ...
    (comp.security.firewalls)