Why is adding a loopback rule needed for internet to work when your iptables policy on INPUT is set to DROP?
0
0
I don't quite get why it's needed. Say you have the following iptables policies: INPUT (DROP) -m conntrack --ctstate ESTABLISHED -j ACCEPT FORWARD (DROP) None OUTPUT (DROP) Rules to allow 443, 80, 53 Trying to access any site with the web browser results in no success with this ruleset but if you add the rule -i lo -j ACCEPT to INPUT it starts working. Basically, I want to know the architectural/design reason as to why this has to be a thing.
linux networking firewall iptables
share | improve this question
asked Dec 3 at 7:35
Resonce
1 1
...