iptables firewall

To: debian-user@lists.debian.org
Subject: iptables firewall
From: Mike McClain <mike.junk@nethere.com>
Date: Tue, 29 Jul 2014 14:04:23 -0700
Message-id: <[🔎] 20140729210423.GA25852@playground>
Mail-followup-to: debian-user@lists.debian.org

I've run into a difficulty with iptables in that both GRC.com and
PCFlank.com's firewall scans show ports 137-139 and 445 as blocked but
not stealthed in spite of the fact that I have these statements in my
firewall script:
    iptables -A INPUT -p udp --dport 137:138 -j DROP
    iptables -A INPUT -p tcp --dport 137:138 -j DROP
    iptables -A INPUT -p tcp --dport 139 -j DROP
    iptables -A INPUT -p tcp --dport 445 -j DROP
    iptables -A OUTPUT -p udp --dport 137:138 -j DROP
    iptables -A OUTPUT -p tcp --dport 137:138 -j DROP
    iptables -A OUTPUT -p tcp --dport 139 -j DROP
    iptables -A OUTPUT -p tcp --dport 445 -j DROP

Both scans report all else stealthed.
Suggestions?
THX,
Mike
--
No electrons were harmed in sending this message, some were inconvenienced.

Reply to:

Follow-Ups:
- Re: iptables firewall
  - From: Sven Hartge <sven@svenhartge.de>
- Re: iptables firewall
  - From: Mark Carroll <mtbc@ixod.org>
- Re: iptables firewall
  - From: Joe <joe@jretrading.com>

Prev by Date: Re: Jessie early boot failure: "/sbin/init exists but couldn't execute it (error -8)" (initrd corrupt?)
Next by Date: Re: iptables firewall
Previous by thread: Re: [SOLVED] /root is full
Next by thread: Re: iptables firewall
Index(es):
- Date
- Thread