iptables - advanced port blocking/stealth mode
Hi guys,
I used to use ipchains (2.2.x kernel) and had ip masq rules setup (for sharing my cable modem onto my lan). I then upgraded to the latest Slackware version (8 i think) and installed kernel 2.4.x and then noticed i needed to use iptables. I have iptables setup to do basic ipmasq, but I haven't been able to find any info of howto secure it (i.e. get all my crappy ports reporting stealth on steve gibsons shields up site). Does anyone have/know of any info on iptables configuration??? cheers. siy. |
siy,
try playing with. iptables -A INPUT -p tcp ! --syn -m state --state NEW -j LOG --log-prefix "New not syn:" iptables -A INPUT -p tcp ! --syn -m state --state NEW -j DROP Go to the following links for the info your looking for. http://people.unix-fu.org/andreasson...l.html#AEN1031 http://ods.dyndns.org/ipt_flow.html http://www.linuxguruz.org/iptables/ http://www.docum.org http://netfilter.filewatcher.org/netfilter-faq.html http://netfilter.filewatcher.org/unr...WTO/index.html http://lists.samba.org/mailman/listinfo/netfilter /Raz |
All times are GMT -5. The time now is 09:33 AM. |