Re: howto block ports

To: debian-firewall@lists.debian.org
Subject: Re: howto block ports
From: "daniel" <daniel@debian-gnu.com>
Date: Thu, 26 Feb 2004 17:32:02 +0100 (CET)
Message-id: <[🔎] 43086.195.212.29.75.1077813122.squirrel@195.212.29.75>
Reply-to: daniel@debian-gnu.com
In-reply-to: <jUsT.aNoTheR.mEsSaGe.iD.107771849725975non specified
References: <jUsT.aNoTheR.mEsSaGe.iD.107771849725975non specified

Maybe you are doing "-j REJECT" for those ports instead of "-j DROP"?


-daniel
http://www.debian-gnu.com

<quote who="Harland Christofferson">
> i have had a firewall configured to drop inbound packets on ports
> that i am not using via iptables. i ran a port scanning utility from
> an external machine. the utility detected that, although the ports
> were _closed_, the ports still responded to the port scan utility.
> i suspect that data destine for these _closed_ ports is being put
> in the TCP/UDP stack. i further suspect that malicious code could
> take advantage of bugs in the stack if there are any. i wish to be
> able to _block_ these ports entirely. i do not have the services
> running in the /etc/inetd.conf file.
>
> how may i do this? i have read some firewall-ing howtos but the ones
> i have read refer to iptables (or ipchains). by the way, i am running
> a 2.4.18 kernel.
>
>
>
>
>
>
>
>
>
>
> --
> To UNSUBSCRIBE, email to debian-firewall-request@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact
> listmaster@lists.debian.org
>
>

Reply to:

Prev by Date: Re: howto block ports
Next by Date: Re: Port Forwarding
Previous by thread: Re: howto block ports
Next by thread: Port Forwarding
Index(es):
- Date
- Thread