LinuxQuestions.org
Help answer threads with 0 replies.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 09-07-2004, 01:01 PM   #1
lazlow69
Member
 
Registered: Jan 2003
Location: Central New Jersey
Distribution: Knoppix to play, Slack current, OpenBSD stables
Posts: 111

Rep: Reputation: 15
iptables - antispoof and modulated states?


Hello.

I've had some recent experience with OpenBSD and it's respective Packet Filter, pf, and have really enjoyed the amount of power it offers. In particular, the fact that it is capable of creating an antispoof firewall rule very easily as well as modulating TCP state information for security and OS obfuscation.
Now I am trying to move back into Linux for my firewalling needs since I want to have as few machines on my network as possible, and one linux box could serve as a firewall as well as other needs that linux does quite well. However, I am not seeing (or am perhaps just missing) the information on how to create a simple antispoofing rule for my LAN, as well as some of the more interesting security features like modulated state that OpenBSD offers....

Can anyone advise on where to look to find out if/how these features can be utilized, or is that not a feature of iptables? Links to primers for iptables as well as links to good higher end security information on iptables, perhaps even extensions or plug-ins for the application, would be greatly appreciated!


Thanks in advance.
 
Old 07-16-2006, 08:29 PM   #2
win32sux
LQ Guru
 
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Rep: Reputation: 380Reputation: 380Reputation: 380Reputation: 380
hi, i know this thread is almost two years old, but i thought i'd bump it anyways in case someone could provide some good info on this - especially the modulated state feature... is netfilter able to do that?? i'm sure openbsd has far more advanced firewall features than linux, but it would still be interesing to see exactly how they compare when it comes to things like antispoofing... not looking for a pissing contest, just looking to learn... if the OP or anyone could post a typcial openbsd anti-spoofing script (with comments) it would be a great start to finding how to do equivalents on linux...
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Running in modulated clock mode... by mistake? sp406 Linux - Software 8 01-30-2008 04:51 PM
Moving to the states! Sava General 17 06-24-2005 09:45 AM
thread states klocko316 Linux - Newbie 1 09-12-2004 06:25 PM
Kernel 2.6.x running in modulated clock mode wesmont Linux - Hardware 10 05-27-2004 10:41 PM
CPU#0:Runing in modulated clock mode shams Mandriva 2 05-26-2004 06:12 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 12:21 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration