hmm yeah. I could go hunt it down. It wasn't as beautifully documented - nor did it have the iptables details IIRC. but in essence yes. (it might have even been via the wiki?)
But so what. nicely typed up.
ASIDE: I generally use -A for my iptables stuff.
--append -A chain Append to chain
since the existing table is permissive rather than exclusive (but it does DROP unmatched rules obviously), the end of the chain is fine.
meh small point.
horses for courses