[ale] Blocking access to a subnet

[JK]

Christopher Fowler wrote:

> I get an invalid argument from iptables when I try that.

Really?  Weird.  That exact command line works fine on my
firewall (running an old-ish version of Devil Linux; I
suppose it's possible someone changed the iptables options
since that distro was built...)

Also, remember that within each chain, iptables uses the
first rule that matches a packet, so if you want to add
a new rule that takes priority over existing rules in a
particular chain, you probably want to use -I (insert at
start of chain) instead of -A (append to end of chain)
to add the rule.

-- JK