Re: iptables firewall

To: debian-user@lists.debian.org
Subject: Re: iptables firewall
From: Pascal Hambourg <pascal@plouf.fr.eu.org>
Date: Wed, 30 Jul 2014 21:34:07 +0200
Message-id: <[🔎] 53D948AF.4090708@plouf.fr.eu.org>
In-reply-to: <[🔎] 20140730081851.70446356@jretrading.com>
References: <[🔎] 20140729210423.GA25852@playground> <[🔎] 20140730081851.70446356@jretrading.com>

Joe a écrit :
> 
> Something else you might do now is to place temporary logging rules
> before your 'DROP' rules, to confirm whether it is indeed iptables
> which is blocking those packets.

Or just run tcpdump while the port scan is running.

> No logs, it's somebody or something
> else. And if you have anything other than just a bare modem between you
> and the outside world, which is not really best practice, then the first
> place to look is the Net router.
> 
> And as someone else asked, why are you worried about this 'stealth'? As
> long as the bad packets don't get in, what does it matter?

He may have believed the claim by GRC et al. that "not stealth=at risk".
But that's just some kind of security by obscurity, isn't it ?

Reply to:

Follow-Ups:
- Re: iptables firewall
  - From: Joe <joe@jretrading.com>

References:
- iptables firewall
  - From: Mike McClain <mike.junk@nethere.com>
- Re: iptables firewall
  - From: Joe <joe@jretrading.com>

Prev by Date: RE: hp server hardware monitoring
Next by Date: Re: iptables firewall
Previous by thread: Re: iptables firewall
Next by thread: Re: iptables firewall
Index(es):
- Date
- Thread