iptables stateful matching security

To: debian-firewall@lists.debian.org
Subject: iptables stateful matching security
From: Jeremy Drake <jeremyd@apptechsys.com>
Date: Wed, 19 Jun 2002 01:07:36 -0700 (PDT)
Message-id: <[🔎] Pine.LNX.4.44.0206190100441.17764-100000@garibaldi.apptechsys.com>

I have written a firewall for the company I work for, which uses stateful 
packet matching.  I have this question: Is is safe/secure/wise to do this.  
For instance, if I require no one from the outside to connect to the local 
linux box, would I be safe doing "iptables -A INPUT -m state --state 
ESTABLISHED,RELATED -j ACCEPT" followed by "iptables -A INPUT -j DROP"?  
Can I be reasonably assured that my box is secure using this firewall and 
keeping up with the latest 2.4 kernels?  (of course, I am running 
tripwire, and have a minimal set of users and services running on the 
box).  

Thank you for helping me clear up this point of confusion between my 
colleagues and I....

-- 
Q: How many Microsoft support staff does it take to change a light bulb?
A: Four. One to ask "What is the registration number of the light bulb?", one
   to ask "Have you tried rebooting it?", another to ask "Have you tried
   reinstalling it?" and the last one to say "It must be your hardware because
   the light bulb in our office works fine..."


-- 
To UNSUBSCRIBE, email to debian-firewall-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

Prev by Date: Re: ftp waiting
Next by Date: ping of death
Previous by thread: Re: ftp waiting
Next by thread: ping of death
Index(es):
- Date
- Thread