Re: disabling ports

To: Debian User <debian-user@lists.debian.org>
Subject: Re: disabling ports
From: Lex Chive <lex@anoat.neuneu.com>
Date: Sat, 21 Aug 1999 12:06:48 +0200
Message-id: <[🔎] 19990821120648.A1776@anoat.neuneu.com>
Mail-followup-to: Debian User <debian-user@lists.debian.org>
Reply-to: lexchive@iname.com
In-reply-to: <[🔎] Pine.BSF.4.01.9908191924220.21586-100000@mets.tcimet.net>; from Paul Miller on Thu, Aug 19, 1999 at 07:26:28PM -0400
References: <[🔎] Pine.BSF.4.01.9908191924220.21586-100000@mets.tcimet.net>

On Thu, Aug 19, 1999 at 07:26:28PM -0400, Paul Miller wrote:
> 
> How can I disable ports 515 and 6000 on my external ethernet adaptor?  --
> I'm ip masquerading an internal network and I only want those services
> running on the internal network.
> 
> Thanks
> -Paul
> 
I guess, if the external nic is eth1,
	ipchains -I input 1 -i eth1 -p tcp --sport 515 -j DENY
	ipchains -I input 1 -i eth1 -p tcp --sport 6000 -j DENY
no?
Or if ur internal net is 192.168.1.0/24,
	ipchains -I input 1 -p tcp -s ! 192.168.1.0/24 515 -j DENY
should work too.

Cant try this now, but from the doc that should be the way (ipchains(8)). If
ur using ipfwadm i dunno.

-Lex

Attachment: pgpvWmdcLl5mS.pgp
Description: PGP signature

Reply to:

References:
- disabling ports
  - From: Paul Miller <paul@mets.tcimet.net>

Prev by Date: latex \renewcommand trouble
Next by Date: Re: Sound volume problems
Previous by thread: disabling ports
Next by thread: Re: Configuring a monitor (power downs)
Index(es):
- Date
- Thread