blocking ports

To: debian-firewall@lists.debian.org
Subject: blocking ports
From: "Patrick Vermeij" <patrick@vermeij.net>
Date: Thu, 13 Jul 2000 15:22:59 +0200
Message-id: <[🔎] 396DDED3.5125.158C008@localhost>

Hi

I've got two questions :

1)
I want to block certain services for the outside world (like lpd etc) but NOT for the inside network
I thought I could block it with ipchains -A input -p tcp -d xxx.xxx.xxx.xxx 515 -j DENY
But if I telnet from a outside host to that port I can still connect
Well I think thats because the INPUT policy is ACCEPT (I think change that to DENY is rather not a good idea)
Is there another solutions for this ?

-------------------------------------------

2)
#showmount -e localhost
mount clntudp_create: RPC: Program not registered

#less /etc/host.allow  : 
[CUT]
portmap: 127.0.0.1

#ps -aux |grep rpc
root       957  0.0  0.0  1128    0 ?        SW   May22   0:00 [rpc.rquotad]
root      1027  0.0  0.1  1776  180 ?        S    May22   0:00 /usr/sbin/rpc.nfsd
root      1030  0.0  0.0  1776   64 ?        S    May22   0:00 /usr/sbin/rpc.mountd
root     12793  0.0  0.0     0    0 ?        SW   Jun15   0:00 [rpciod]
root     13120  0.0  0.0  1304    0 ?        SW   Jul09   0:00 [rpc.ugidd]

what is wrong?

thanx in advance 
patrick
---

Encryption:  A powerful algorithmic encoding technique employed in the creation of computer manuals.

Reply to:

Follow-Ups:
- Re: blocking ports
  - From: Seth Vidal <skvidal@phy.duke.edu>
- Re: blocking ports
  - From: Ralf-Philipp Weinmann <weinmann@rbg.informatik.tu-darmstadt.de>

Prev by Date: Re: Linux firewall vs. other products
Next by Date: Re: blocking ports
Previous by thread: Re: Linux firewall vs. other products
Next by thread: Re: blocking ports
Index(es):
- Date
- Thread