LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 07-13-2003, 03:53 AM   #1
iillusion71
LQ Newbie
 
Registered: Jul 2003
Location: United States
Posts: 4

Rep: Reputation: 0
Question Firewall help....


I have done a clean install with Mandrake 9.1 ...so far so good!
The more I use it the more Im anti-MS ,

Here is my question....
I have configured the firewall that came with Mandrake, after doing some limited port scans on my system I have found out that certain ports remain 'Closed' .... here is a list of ports found.
80 , 113, 135, 443 (via Gibson Research)
Now I understand that im not as much as risk like a ms-based os.I am using a motorola surfboard cable modem via ethernet

How can I close these ports without disabling any of my network connectivity?

Can these ports remain hidden from port scans?

I dont want to be a sitting duck on the network with ports drawing attention to the advanced eye.

Thank you to all who read this and have any informative information.

Viva La Linux!!
 
Old 07-13-2003, 10:15 AM   #2
david_ross
Moderator
 
Registered: Mar 2003
Location: Scotland
Distribution: Slackware, RedHat, Debian
Posts: 12,047

Rep: Reputation: 66
You can block them using:
iptables -A INPUT -p tcp --dport PORT -j REJECT

You could also set the default input policy to drop packets:
iptables -P INPUT DROP

It may be worth looking into what services use those ports and disable them. For instance port 80 is used by web servers. if you don;t host a site on your machine you could disable it.
 
Old 07-13-2003, 10:56 AM   #3
emetib
Member
 
Registered: Feb 2003
Posts: 482

Rep: Reputation: 33
david,
would you have a link to a good iptalbes how-to/site/information?

thanks
 
Old 07-13-2003, 11:53 AM   #4
david_ross
Moderator
 
Registered: Mar 2003
Location: Scotland
Distribution: Slackware, RedHat, Debian
Posts: 12,047

Rep: Reputation: 66
Try:
http://www.netfilter.org/
 
Old 07-13-2003, 11:56 AM   #5
iillusion71
LQ Newbie
 
Registered: Jul 2003
Location: United States
Posts: 4

Original Poster
Rep: Reputation: 0
Thank you very much for the reply.

I have also found this links to iptables and packet filtering
http://www.ecst.csuchico.edu/~dranch...2.4.X-STRONGER
http://www.netfilter.org/documentati...ring-HOWTO.txt
 
Old 07-13-2003, 12:37 PM   #6
emetib
Member
 
Registered: Feb 2003
Posts: 482

Rep: Reputation: 33
thanks
 
Old 07-13-2003, 12:41 PM   #7
iillusion71
LQ Newbie
 
Registered: Jul 2003
Location: United States
Posts: 4

Original Poster
Rep: Reputation: 0
Upon entering those commands i get the error iptables and/or my kernel need to be updated.

How can I tell what version kernel I have?
I have iptable 1.2.7a
I see netfilter.org has a newer version, do i need the tar.gz and the key file??

So much information,
So little brain space.
 
Old 07-13-2003, 12:46 PM   #8
emetib
Member
 
Registered: Feb 2003
Posts: 482

Rep: Reputation: 33
it hurts sometimes doesnt' it.

kernel version is less /proc/version
i wouldnt' think that you would need the newest version, though it doesn't hurt to have it. with newer versions bugs have been removed from the earlier versions, and upgrades to the packages have been made.

cheers.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
BSD Firewall vs Linux Firewall ? rootlinux Linux - Security 5 08-29-2007 08:38 AM
Firewall lets ips which are not in the firewall ... why ? sys7em Linux - Networking 2 06-30-2005 01:50 PM
Firewall with features of a Sidewinder firewall? abcampa Linux - Security 4 04-22-2005 05:24 PM
slackware's /etc/rc.d/rc.firewall equivalent ||| firewall script startup win32sux Debian 1 03-06-2004 10:15 PM
Firewall Builder sample firewall policy file ? (.xml) nuwanguy Linux - Networking 0 09-13-2003 01:32 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie

All times are GMT -5. The time now is 06:17 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration