[Plug] fun with ipchains

Darxus on Sat, 4 Sep 1999 23:27:36 -0400 (EDT)

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

[Plug] fun with ipchains

From: Darxus <darxus@op.net>

To: plug@lists.nothinbut.net

Subject: [Plug] fun with ipchains

Date: Sat, 4 Sep 1999 23:27:24 -0400 (EDT)

Reply-to: plug@lists.nothinbut.net

Sender: plug-admin@lists.nothinbut.net

ipchains is much fun :) I really shoulda played with this thing a long time ago. I'm setting it up to block everything by default, and then specifically allow on a port/host/domain basis (like with tcp wrappers, but at a lower level). It rocks. But what I need to know is... what is the range of valid ports used for return connections ? Like... I currently have an outgoing ssh connection to a remote host, that looks like this: Proto Recv-Q Send-Q Local Address Foreign Address State tcp 0 0 209.152.194.126:2508 209.152.193.3:22 ESTABLISHED The remote end of the connection is, of course, connected to the ssh port (22). The local end is connected to port 2508. So what's the range (not specifically for ssh... I believe this is universal?) __________________________________________________________________ PGP fingerprint = 03 5B 9B A0 16 33 91 2F A5 77 BC EE 43 71 98 D4 darxus@op.net / http://www.op.net/~darxus Far Beyond Reason _______________________________________________ Plug maillist - Plug@lists.nothinbut.net http://lists.nothinbut.net/mail/listinfo/plug

Prev by Date: Re: [Plug] nmap output

Next by Date: Re: [Plug] nmap output

Previous by thread: Re: [Plug] tripwire signitures ?

Next by thread: [Plug] ipchains... rocks

Index(es):

Date

Thread