And what about denying UDP?

To: Debian Firewall <debian-firewall@lists.debian.org>
Subject: And what about denying UDP?
From: Manel Marin <uni00771@pc-internet.com>
Date: Sun, 2 May 1999 20:39:07 +0200
Message-id: <[🔎] 19990502203907.A283@p166>

Hi all,

Well I have clear now some things to do in my filtering packets firewall
(I have a bash script called "firewall" using ipfwadm)

- Deny SYN packets from outside (this avoid ANY connection to me from outside)
- Deny TCP inputs from outside to 1-1023 (services) and 6000-6009 (X server)

- Do some tests with ICMP to see what can be denyied without performance loss

And what about UDP?
? Just to deny inputs to 1-1023 and 6000-6009?
? Can any attack come in by UDP ports?

I have seen UDP is only used to return DNS info from port 53 (using www, ftp,
smail, and fetchmail)
? Can I deny any other UDP packet?


Again what do you thing?

Best regards,
-- 
--------------------------------
Manel Marin   e-mail: uni00771@pc-internet.com
Linux Powered (Debian 2.0)
--------------------------------

Reply to:

Prev by Date: icmplogd: destination unreachable?
Next by Date: Re: FIREWALL STRATEGY (What do you think?)
Previous by thread: icmplogd: destination unreachable?
Next by thread: Re: firewall that boots from diskette (fwd)
Index(es):
- Date
- Thread