-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Monday 09 December 2002 09:35 pm, Jeff Stillwall wrote: > Hopefully, this is only slightly off-topic. > > I just replaced a commercial firewall with a RH 7.3 machine running > IPTables. Several non-IT employees found comfort in running Gibson's > port scan (http://www.grc.com). With the old firewall in place, a port > scan showed all ports as 'stealth' (besides 80 which is forwarded to > another machine).
If your firewall is refusing the connections, the scanner will show closed ports. If the rules instead drop the packets, the ports will show up as stealth. Try changing the firewall rules policy from REJECT to DROP Note that dropping ident requests can result in causing connection delays, you may want to reject those requests instead. - -- - -Michael pgp key: http://www.tuxfan.homeip.net:8080/gpgkey.txt Red Hat Linux 7.{2,3}|8.0 in 8M of RAM: http://www.rule-project.org/ - -- -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.7 (GNU/Linux) iD8DBQE99Vlhn/07WoAb/SsRAhDMAKCx0zpl8Xtx74ZvQJ06JwVFDBAMaQCguMIS gDZK9PRK/fKddE46yo52ViI= =4T6+ -----END PGP SIGNATURE----- -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED]?subject=unsubscribe https://listman.redhat.com/mailman/listinfo/redhat-list
