014.01.60.1. How can you enhance the security of an individual machine by configuring firewall rules in the INPUT chain, and what is the significance of setting the policy to DROP?
The security can be enhanced by adding certain rules and setting the address that is sending some bad stuff to DROP, also the default policy should be made to DROP that stuff as if the first rule is to ACCEPT all addresses, the sender with a bad IP address will also be accepted, as kernel looks for the rules from top to bottom. It is done like this command:
iptables -P INPUT DROP,
This will drop all the packets coming from the address causing issues. This way the default policy will also change.
