LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
Search this Thread
Old 08-28-2005, 10:55 AM   #1
Shafted
Member
 
Registered: Sep 2003
Posts: 40

Rep: Reputation: 15
Question User defined protocols with Guarddog


I've been using Guarddog to configure my firewall for a while now and the custom protocols were sufficent. However, now I'd like to allows ports 10000-10010 TCP. So I created a new protocol allowing this and permitted it under the protocols tab.

It's not working though.

I've been using https://www.grc.com/x/ne.dll?bh0bkyd2 to check my ports. If I permit a protocol such a Bittorrent Peer in Guarddog and go to the above site and scan 6881-6889 it shows them all as closed rather than stealth. But with my new protocol when I scan 10000-10010 it still shows them as stealth.

What am I doing wrong?

Thanks.
 
Old 08-29-2005, 10:56 PM   #2
Capt_Caveman
Senior Member
 
Registered: Mar 2003
Distribution: Fedora
Posts: 3,658

Rep: Reputation: 57
What does iptables -vnL | grep 10000 show?
 
Old 08-30-2005, 06:44 PM   #3
Shafted
Member
 
Registered: Sep 2003
Posts: 40

Original Poster
Rep: Reputation: 15
iptables -vnL | grep 1000
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpts:10000:10010 state NEW
 
Old 08-30-2005, 08:40 PM   #4
Capt_Caveman
Senior Member
 
Registered: Mar 2003
Distribution: Fedora
Posts: 3,658

Rep: Reputation: 57
If you do:
iptables -I INPUT -p tcp --dport 10000:10010 -j ACCEPT

Do you see the port open via the grc scan? (Make sure that you use "iptables -I" not "iptables -A")
 
Old 09-01-2005, 01:56 PM   #5
Shafted
Member
 
Registered: Sep 2003
Posts: 40

Original Poster
Rep: Reputation: 15
I can't answer the last question right now cause I'm not at my computer, but I have a question.

Debian uses /etc/rc.firewall for it's rules. Now I have to be honest and admit I have very little knowledge how iptables works, but looking in rc.firewall I noticed something.

For 6881-6889, which work they way I want my user-defined protocol to work, there is an extra line. I can't give the exact line from memory but what I'd like to do is edit rc.firewall myself.

My question is once I've edited rc.firewall what must I do for the changes to take effect?

Can I just run the script or should I flush everything out first?

Last edited by Shafted; 09-01-2005 at 02:09 PM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Linux Script which uses user defined variables fieldyweb Linux - Newbie 3 09-26-2005 07:29 PM
How to launch a program as a defined user at startup. Linux.tar.gz Linux - Software 2 03-20-2005 12:28 PM
user defined variables linuxdev Linux - Newbie 4 02-09-2004 01:43 PM
Squirrelmail: How can I load user defined themes? DJ_Cyberdance Linux - Software 0 12-12-2003 05:40 PM
C++: How to use a namespace in a user-defined library? Gethyn Programming 9 08-15-2003 06:29 AM


All times are GMT -5. The time now is 09:43 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration