On Mon, 2002-11-18 at 10:00, [EMAIL PROTECTED] wrote: > Hello, > > If you know iptables and ipchains, would you mind to help me to modify > the setting ( change "the format of iptables" to "format of ipchains" ) > ? > > iptables -A INPUT -i ppp0 -p tcp --tcp-flags ALL FIN,URG,PSH -j DROP > iptables -A INPUT -i ppp0 -p tcp --tcp-flags ALL ALL -j DROP > iptables -A INPUT -i ppp0 -p tcp --tcp-flags ALL SYN,RST,ACK,FIN,URG -j > DROP > iptables -A INPUT -i ppp0 -p tcp --tcp-flags ALL NONE -j DROP > iptables -A INPUT -i ppp0 -p tcp --tcp-flags SYN,RST SYN,RST -j DROP > iptables -A INPUT -i ppp0 -p tcp --tcp-flags SYN,FIN SYN,FIN -j DROP > > modprobe ip_tables > modprobe ip_conntrack > modprobe ip_conntrack_ftp > modprobe ip_conntrack_irc > > iptables -A INPUT -i ppp0 -p tcp --dport 20 -j ACCEPT > iptables -A INPUT -i ppp0 -p tcp --dport 21 -j ACCEPT > iptables -A INPUT -i ppp0 -p tcp --dport 22 -j ACCEPT > iptables -A INPUT -i ppp0 -p tcp --dport 23 -j ACCEPT > iptables -A INPUT -i ppp0 -p tcp --dport 25 -j ACCEPT > iptables -A INPUT -i ppp0 -p tcp --dport 53 -j ACCEPT > iptables -A INPUT -i ppp0 -p udp --dport 53 -j ACCEPT > iptables -A INPUT -i ppp0 -p tcp --dport 110 -j ACCEPT > iptables -A INPUT -i ppp0 -p tcp --dport 113 -j ACCEPT > iptables -A INPUT -i ppp0 -m state --state RELATED,ESTABLISHED -j ACCEPT > > iptables -A INPUT -i ppp0 -m state --state NEW,INVALID -j DROP > > Thank for your help !
Have a look at this HOWTO for ipchains... http://www.tldp.org/HOWTO/IPCHAINS-HOWTO.html and this for iptables... http://www.netfilter.org/documentation/tutorials/blueflux/ Regards, Peter -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED]?subject=unsubscribe https://listman.redhat.com/mailman/listinfo/redhat-list
