Re: firewall advice

To: debian-security@lists.debian.org
Subject: Re: firewall advice
From: Rolf Kutz <kutz@netcologne.de>
Date: Mon, 16 Dec 2002 11:10:03 +0100
Message-id: <20021216101003.GA15194@afrika>
Mail-followup-to: debian-security@lists.debian.org
In-reply-to: <20021216032753.GA8045@mindspring.com>
References: <20021216031525.GB18036@torrin.dyndns.org> <20021216032753.GA8045@mindspring.com>

* Quoting andrew lattis (alattis@mindspring.com):

> ####
> #connections to lo
> $iptables -A OUTPUT -p ALL -o $lo_iface -s $lo_ip -j ACCEPT
> 
> #allow the rest
> $iptables -A OUTPUT -p ALL -o $eth_iface -s $eth_ip -j ACCEPT
> 
> #log the rest
> $iptables -A OUTPUT -m limit --limit $log_limit --limit-burst $log_limit_burst -p tcp -j LOG --log-prefix "output tcp:"
> $iptables -A OUTPUT -m limit --limit $log_limit --limit-burst $log_limit_burst -p udp -j LOG --log-prefix "output udp:"

You should not forget to log other protokols like
icmp, ... It's best to log any packet here.

- rk

-- 
Ahahahahaha! Ahahahaha! Aahahaha!
BEWARE!!!!!
Yrs sincerely
The Opera Ghost

Reply to:

References:
- firewall advice
  - From: Torrin <torrin@torrin.dyndns.org>
- Re: firewall advice
  - From: andrew lattis <alattis@mindspring.com>

Prev by Date: Re: Where to install the firewall scripts
Next by Date: Re: firewall advice
Previous by thread: Re: firewall advice
Next by thread: Re: firewall advice
Index(es):
- Date
- Thread