Firewall rules to block unwanted protocolls on given ports

To: "Debian" <debian-user@lists.debian.org>
Subject: Firewall rules to block unwanted protocolls on given ports
From: johhny_at_poland77 <johhny_at_poland77@zoho.com>
Date: Sat, 19 Mar 2011 06:05:52 -0700
Message-id: <[🔎] 12ece38cdc9.930887499216092428.2266832439697170640@zoho.com>

Does somebody has an idea, that what kind of iptables/pf rule must i use to achieve this?:

i only want to allow these connections [on the output chain]:

on port 53 output only allow udp - dns
on port 80 output only allow tcp - http
on port 443 output only allow tcp - https
on port 993 output only allow tcp - imaps
on port 465 output only allow tcp - smtps
on port 22 output only allow tcp - ssh
on port 20-21 output only allow cp - ftp
on port 989-990 output only allow tcp - ftps
on port 1194 output only allow udp - OpenVPN

So that e.g.: OpenVPN on port 443 would be blocked, because only HTTPS is allowed on port 443 outbound.

Any ideas? :\

Reply to:

Follow-Ups:
- Re: Firewall rules to block unwanted protocolls on given ports
  - From: "Boyd Stephen Smith Jr." <bss@iguanasuicide.net>

Prev by Date: Re: download debian
Next by Date: Fwd: [help-a-newb] problem with authenticating with gui users-groups manager
Previous by thread: Re: [help-a-newb] problem with authenticating with gui users-groups manager
Next by thread: Re: Firewall rules to block unwanted protocolls on given ports
Index(es):
- Date
- Thread