Re: About my Firewall Settings - I would like an opinion

To: "Manuel Gomez" <mgdpz1@gmail.com>
Cc: ubuntu-users@lists.ubuntu.com, debian-user@lists.debian.org, shorewall-users@lists.sourceforge.net
Subject: Re: About my Firewall Settings - I would like an opinion
From: "Sam Kuper" <sam.kuper@uclmail.net>
Date: Mon, 10 Nov 2008 19:32:53 +0000
Message-id: <[🔎] 4126b3450811101132x2dd8ee2fq36278aed737c390@mail.gmail.com>
In-reply-to: <[🔎] 491888BC.7000307@gmail.com>
References: <[🔎] 491888BC.7000307@gmail.com>

2008/11/10 Manuel Gomez <mgdpz1@gmail.com>

Hi, i would like to read opinions about my firewall settings:
I am using Iptables with Shorewall (frontend) and my configuration is:
- Default Policy: REJECT all connections.
- Rules: Allow DNS (my DNS servers), allow http and https connections for servers: www.google.es, ...
So, nobody except these servers can connect with me (inbound and outbound).
This type of configuration is secure? How could they attack me?

By using REJECT instead of DROP, you have no stealth. This means you can be port-scanned to look for weaknesses, e.g. unpatched OpenSSH vulnerabilities, etc.

Reply to:

Follow-Ups:
- Re: About my Firewall Settings - I would like an opinion
  - From: "Sam Kuper" <sam.kuper@uclmail.net>

References:
- About my Firewall Settings - I would like an opinion
  - From: Manuel Gomez <mgdpz1@gmail.com>

Prev by Date: About my Firewall Settings - I would like an opinion
Next by Date: Re: postfix can't send and receive mails
Previous by thread: About my Firewall Settings - I would like an opinion
Next by thread: Re: About my Firewall Settings - I would like an opinion
Index(es):
- Date
- Thread