Re: high ports filtered?

To: Alvaro Reguly <alvaro@reguly.net>
Cc: debian-firewall@lists.debian.org
Subject: Re: high ports filtered?
From: Igor Mozetic <igor.mozetic@uni-mb.si>
Date: Thu, 08 Nov 2001 17:44:36 +0100
Message-id: <[🔎] 15338.46708.652480.384049@ravan.camtp.uni-mb.si>
In-reply-to: <Pine.LNX.4.40.0111081341180.29274-100000@plazarus.plazahoteis.com.br>
References: <[🔎] 15338.39555.877375.796824@ravan.camtp.uni-mb.si> <Pine.LNX.4.40.0111081341180.29274-100000@plazarus.plazahoteis.com.br>

Alvaro Reguly writes:

 > I'm not sure but maybe if you put
 > 
 > net.ipv4.ip_local_port_range = 1024 5000
 > 
 > in /etc/sysctl.conf ?

This works in the sense that client requests come from the new range.
However, nfs/rpc ports are also from the new range, so the original
goal to block these ports is defied. Is there anything else apart
to the stateful filtering one can do? (which isn't an option on
the router). Can one specify the ports used by the portmapper?

-Igor Mozetic

Reply to:

References:
- high ports filtered?
  - From: Igor Mozetic <igor.mozetic@uni-mb.si>

Prev by Date: Re: high ports filtered?
Next by Date: Security?
Previous by thread: Re: high ports filtered?
Next by thread: Security?
Index(es):
- Date
- Thread