Quote Originally Posted by nplusplus View Post
Hey, Dawg,

Care to offer up a reference for my own enrichment regarding your assertion of "preferred?"

And as far as your explanation of the logs to TechnoJoe, are you simply suggesting the router's session timeout is longer than the local firewall's?

N
Sorry for the late reply, I got tied up in my real life.

technojoe answered your question and is right. Any packet that must traverse the chain takes up resources and thus you want to drop them as soon as possible in order to conserve resources for ligament traffic that you want top process. INVALID along with ESTABLISHED,RELATED should always be placed at the top of the chain to save resources. It just make good sense.