On 03/25/2015 02:06 PM, Linux4Bene wrote:
> Op Wed, 25 Mar 2015 11:46:21 +0100, schreef Diogene Laerce:
>
>> Hi,
>>
>> I have a strange behavior of iptables lately : all rules are cleaned up
>> after a few minutes.
>>
>> iptables-persistent is installed and if I reboot just after restoring
>> all
Op Wed, 25 Mar 2015 11:46:21 +0100, schreef Diogene Laerce:
> Hi,
>
> I have a strange behavior of iptables lately : all rules are cleaned up
> after a few minutes.
>
> iptables-persistent is installed and if I reboot just after restoring
> all rules,
> all rules are still loaded. But a few minu
Subject: iptables rules
Date: Thu, Aug 02, 2001 at 12:18:14PM +1000
In reply to:Renai LeMay
Quoting Renai LeMay([EMAIL PROTECTED]):
> Hi,
>
> I'm running 2.4.7 on a workstation machine with sid, and I'd like to set up
> simple firewalling rules on my machine.
>
> >From a secur
Renai,
> Can someone give me some advice on how to setup some simple rules as well as
> having them refreshed when I restart?
I'd be happy to send you my iptables script if you like. But it's
really best to craft one yourself so you'll really understand what
you are doing along the way. That w
All listed in /etc/inetd.conf. Comment them out.
On Tue, 13 Feb 2001, Vadim Kutsyy wrote:
>Jason, good idea. I took care about ssh (removed all [K,S]20ssh).
>Hoever I have no clue what to do with aother ports.
>
>port 13: daytime
>port 37: time
>port 9: discard
>
>Any ideas?
>
>Thanks.
>
>Jaso
Wil Reichert wrote:
> http://netfilter.samba.org/unreliable-guides/packet-filtering-HOWTO/index.html
>
> Section 7 covers fun stuff like avoiding ping-o-death & syn-flooding.
I've seen it (I used Section 5 to create my rules). However, my
computer is stand alone workstation without any servers,
Check out the packet filtering howto:
http://netfilter.samba.org/unreliable-guides/packet-filtering-HOWTO/index.html
Section 7 covers fun stuff like avoiding ping-o-death & syn-flooding.
Wil
--- Hall Stevenson <[EMAIL PROTECTED]> wrote:
> > How to make my computer not pingable?
>
> As root,
>
> How to make my computer not pingable?
As root,
"echo 1 > /proc/sys/net/ipv4/icmp_echo_ignore_all"
I don't know what other "problems" this may lead to, if any, though...
Regards
Hall
> > port 13: daytime
> > port 37: time
> > port 9: discard
> >
> > Any ideas?
> >
> > Thanks.
> >
>
> Those are started by inetd.Comment them in /etc/inetd.conf then ,as root
> /etc/init.d/inetd restart
Thanks, and last question:
How to make my computer not pingable?
Thanks.
Vadim Kutsyy wrote:
>
> Jason, good idea. I took care about ssh (removed all [K,S]20ssh).
> Hoever I have no clue what to do with aother ports.
>
> port 13: daytime
> port 37: time
> port 9: discard
>
> Any ideas?
>
> Thanks.
>
Those are started by inetd.Comment them in /etc/inetd.conf then
Jason, good idea. I took care about ssh (removed all [K,S]20ssh).
Hoever I have no clue what to do with aother ports.
port 13: daytime
port 37: time
port 9: discard
Any ideas?
Thanks.
Jason Schepman wrote:
>
> Vadim,
>
> I would turn off the services that are using those ports (if you don't
Vadim,
I would turn off the services that are using those ports (if you don't need
them). For instance, port 22 is going to be your ssh daemon listening for
connections. If you have a standalone workstation, I can't imagine why you
would need ssh running. I'm not sure what the other ports are.
;[EMAIL PROTECTED]>
Subject: RE: iptables rules
In-reply-to: <[EMAIL PROTECTED]>
To: William Jensen <[EMAIL PROTECTED]>
Cc: debian-user@lists.debian.org
Reply-to: Pollywog <[EMAIL PROTECTED]>
Organization: The Pond
X-Mailer: XFMail 1.4.6 on Linux
X-Priority: 3 (Normal)
Resent-
Actually, I believe the script I use is based on this one:
http://www.linuxhelp.net/guides/davion/iptables-script
Woody has an iptables package too, which I am examining now.
--
Andrew
Try this:
http://www.debiandiary.f2s.com/diary/iptables.html
There is a script there called iptables.sh.
I believe that is the script I used as a starting point.
--
Andrew
On 28-Aug-2000 William Jensen wrote:
> Greetings everyone...
>
> I've upgraded to the 2.4.0-test5 kernel, compiled in netf
15 matches
Mail list logo
