Basic question about ipchains being useful

To: debian-security@lists.debian.org
Subject: Basic question about ipchains being useful
From: Julien Dupre <julien_duprefr@yahoo.fr>
Date: Tue, 19 Jun 2001 22:21:37 +0200 (CEST)
Message-id: <[🔎] 20010619202137.30489.qmail@web14804.mail.yahoo.com>

Hi,

I've read the Firewall FAQ and didn't find
an answer to my problem.
I understand that ipchains may be useful for
a router to filter out some packets or restrict
some services to specific hosts, but I'm just
running a webserver on a single machine with
usual services. I don't need to restrict the
access to some hosts for the ports where a
service is running (http, ftp, smtp, ssh, bind)
and I don't mind filtering out other ports as
no process is running to deal witht he packets
anyway.
I'm using an IDS (snort) because I'm curious
to see if someone wants to break in, but my
current conclusion is to say that I don't need
any ipchain rule. Did I miss something ?

Thanks for any hint !
Julien


___________________________________________________________
Do You Yahoo!? -- Pour faire vos courses sur le Net, 
Yahoo! Shopping : http://fr.shopping.yahoo.com

Reply to:

Follow-Ups:
- Re: Basic question about ipchains being useful
  - From: Tim Haynes <debian@stirfried.vegetable.org.uk>

Prev by Date: Re: rlinetd security
Next by Date: Re: rlinetd security
Previous by thread: Re: FAQ ?
Next by thread: Re: Basic question about ipchains being useful
Index(es):
- Date
- Thread