LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Security (https://www.linuxquestions.org/questions/linux-security-4/)
-   -   shorewall and mandrake, some ports open i can't close (https://www.linuxquestions.org/questions/linux-security-4/shorewall-and-mandrake-some-ports-open-i-cant-close-249761/)

chil326 11-01-2004 05:56 AM
shorewall and mandrake, some ports open i can't close
 
Hello!
i use Mandrake 10.
i configured the firewall to have no port open except 4661 which is edonkey.
but i still have some ports open i just i can't close, and i don't understand why.
i join configuration files of shorewall.
thanks for the help!

results of nmap -p 0-65535 localhost :
-------------------------------------------------------------------------------------------
(The 65532 ports scanned but not shown below are in state: closed)
PORT STATE SERVICE
631/tcp open ipp
4661/tcp open unknown
6000/tcp open X11
32768/tcp open unknown
--------------------------------------------------------------------------------------------
/etc/shorewall/policy :
---------------------------------------------------------------------------------------------
###############################################################################
#SOURCE DEST POLICY LOG LEVEL LIMIT:BURST
# The FOLLOWING POLICY MUST BE LAST
loc net ACCEPT
fw net ACCEPT
net all DROP info
all all REJECT info
#LAST LINE -- ADD YOUR ENTRIES ABOVE THIS LINE -- DO NOT REMOVE
----------------------------------------------------------------------------------------------
/etc/shorewall/rules :
-----------------------------------------------------------------------------------------------
##############################################################################
#ACTION SOURCE DEST PROTO DEST SOURCE ORIGINAL RATE USER
# PORT PORT(S) DEST LIMIT SET
ACCEPT net fw tcp 4661 -
ACCEPT loc fw tcp 4661 -
#LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE
-------------------------------------------------------------------------------------------------

m4dj4ck 11-01-2004 10:28 PM
sometimes, it is better to completely disable the unneccesary ports rather than using firewall to block it. I think you can safely disable X server's port listening by initiating :-

/usr/X11R6/bin/startx -- -nolisten tcp

This will disable listening port on 6000.

For port 631/IPP, you can disable unless you wish to have printing services on your Mandrake. Anyway, to remove unneccesary services, go to Mandrake Control Center->System-->Services. Then choose any other services you dont need. Cheers!

-m4-


All times are GMT -5. The time now is 05:45 PM.