Provides an easy script online.
Details of installing the script....
step through the script from the web page mentioned above, selecting any services you need. for home use and not supporting a web server, you may not need to change anything, just go ahead and run the script generator.
copy the text from the output of the script generator to your favourite text editor.
You may need root to do this.
Now, go to /etc/init.d and rename iptables to iptables.orig
Then save your text as iptables in /etc/init.d
You may need to dos2unix the file to delimit/remove carriage returns.
cd /etc/init.d (change directories to /etc/init.d/)
dos2unix -U iptables (-U will change to unix if dos or mac)
Now you need to make the file executable, I did this in a root session of kde, with a file manager (konqueror) by right click, properties, permissions. and check the box executable.
Now when ever iptables is started the firewall script is used.
After restarting iptables (reboot?) you can check with ShieldsUp! by going to www.grc.com
(Gibson Research Corporation) and first selecting ShieldsUp! (hotspots section) then click the proceed button, next there may be a popup (you need to continue to do the test) just click continue.
Now you can select the port range to check for open, closed and stealth ports. Remember that a closed port means there is a port there.
Select all service ports
, in the middle of the bunch.
You should see some info about your ip address as GRC and the rest of the web sees it.
Read some of the info supplied on the page as the test runs to see what is what.
Works so far, full stealth.
Before the NTP (network Time Protocol) was showing closed on port 123.
Which means that I'm home, but not answering. (an active connection)
I hope this helps someone. Glenn