Re: newbie firewall recommendation

To: debian-firewall@lists.debian.org
Subject: Re: newbie firewall recommendation
From: Bernd Eckenfels <lists@lina.inka.de>
Date: Wed, 4 Jun 2003 08:03:47 +0200
Message-id: <[🔎] 20030604060347.GA9653@lina.inka.de>
In-reply-to: <[🔎] Pine.LNX.4.44.0306032227330.26393-100000@in.theory.org>
References: <[🔎] Pine.LNX.4.44.0306032227330.26393-100000@in.theory.org>

On Tue, Jun 03, 2003 at 10:37:38PM -0700, Richard Cochinos wrote:
> This is a very simple server - X hasn't been installed - so any GUI
> interfaces wont help me. Ideally I want only to open 4 ports 22,25,80 and
> 443.

Well, you can use "netstat -lpetu" (as root) to see the open ports on the
system. If ssh, smtp and web are the only open ports, there is actually no
need for a firewall.

If you want to be sure, nobody can expose additional ports of the system,
you can use a simple ipchains script with 4+1 accept rules and deny
everything else. No need for a firewall builder package or anything else to
protect a host which is no router.

Greetings
Bernd
-- 
  (OO)      -- Bernd_Eckenfels@Wendelinusstrasse39.76646Bruchsal.de --
 ( .. )  ecki@{inka.de,linux.de,debian.org} http://home.pages.de/~eckes/
  o--o     *plush*  2048/93600EFD  eckes@irc  +497257930613  BE5-RIPE
(O____O)  When cryptography is outlawed, bayl bhgynjf jvyy unir cevinpl!

Reply to:

Follow-Ups:
- Re: newbie firewall recommendation
  - From: Richard Cochinos <richard@theory.org>

References:
- newbie firewall recommendation
  - From: Richard Cochinos <richard@theory.org>

Prev by Date: newbie firewall recommendation
Next by Date: Re: Too slow connection
Previous by thread: newbie firewall recommendation
Next by thread: Re: newbie firewall recommendation
Index(es):
- Date
- Thread