Re: [PLUG] IPChains

Inkdog.com Staff on Thu, 28 Dec 2000 13:08:48 -0500

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] IPChains

From: "Inkdog.com Staff" <drexeldg@dca.net>

To: <plug@lists.phillylinux.org>

Subject: Re: [PLUG] IPChains

Date: Thu, 28 Dec 2000 13:00:12 -0800

Reply-to: plug@lists.phillylinux.org

Sender: plug-admin@lists.phillylinux.org

----- Original Message ----- From: Mike Leone <turgon@mike-leone.com> To: <plug@lists.phillylinux.org> Sent: Thursday, December 28, 2000 9:39 AM Subject: Re: [PLUG] IPChains > On 28 Dec 2000 12:24:48 -0800, Inkdog.com Staff wrote: > > Seasons Greetings all! > > > > I have been messing around with IPChains recently.. as I have a masqing set > > up on a LAN... and a few computers on the net. My goal here is to stop > > packets going to ports 1024 and over. So all the clients can send and > > recive email and surf the net. > > > > That is all that is required at this place... so I tried these commands... > > and I stopped ALL packets to the clients. > > > > ipchains -A input -p tcp -s 0/0 ! 0:1024 -j REJECT > > > > ipchains -A output -p tcp -d 0/0 ! 0:1024 -j REJECT > > > > ipchains -A input -p udp -s 0/0 ! 0:1024 -j REJECT > > > > ipchains -A output -p udp -s 0/0 ! 0:1024 -j REJECT > > > > Again... I am tryin to deny service to all non basic ports.. (AOL IM.. ICQ > > stuff like that.. or enable it on a port by port basis... instead of the > > whole range being open) > > > > Also... if someone know how to reset the ipchains rule set without me having > > to reboot the machine.. that would be helpful. > > Oops. That's "ipchains input -F" > > -F, --flush > Flush the selected chain. This is equivalent to deleting > all the > rules one by one. Right then I can just reenter the old rules and start again? Has anyone messed around with IPChains or the various other built in firewall features of the OS.... Such as ipmasqadm or ipfwdaen or something Are these the same set of rules or updated or what? Or is this a distro, and thus, a personal choice.... Thanks again all Anthony > > > > > > > If ya need more details let me know.. thanks and I hope everyone is having a > > SAFE and fun holiday season > > > > Anthony > > > > > > ______________________________________________________________________ > > Philadelphia Linux Users Group - http://www.phillylinux.org > > Announcements-http://lists.phillylinux.org/mail/listinfo/plug-announce > > General Discussion - http://lists.phillylinux.org/mail/listinfo/plug > > > > > > > > -- > ------------------------------------------------------------------ > Michael J. Leone <mailto:turgon@mike-leone.com> > PGP Fingerprint: 0AA8 DC47 CB63 AE3F C739 6BF9 9AB4 1EF6 5AA5 BCDF > > > > ______________________________________________________________________ > Philadelphia Linux Users Group - http://www.phillylinux.org > Announcements-http://lists.phillylinux.org/mail/listinfo/plug-announce > General Discussion - http://lists.phillylinux.org/mail/listinfo/plug > > ______________________________________________________________________ Philadelphia Linux Users Group - http://www.phillylinux.org Announcements-http://lists.phillylinux.org/mail/listinfo/plug-announce General Discussion - http://lists.phillylinux.org/mail/listinfo/plug

References:

[PLUG] PLUG meeting location for Jan 3
From: Andrew White <andrew@white.com>

Re: [PLUG] PLUG meeting location for Jan 3
From: Leonard Rosenthol <leonardr@lazerware.com>

[PLUG] IPChains
From: "Inkdog.com Staff" <drexeldg@dca.net>

Re: [PLUG] IPChains
From: Mike Leone <turgon@mike-leone.com>

Prev by Date: Re: [PLUG] IPChains

Next by Date: Re: [PLUG] IPChains

Previous by thread: Re: [PLUG] IPChains

Next by thread: Re: [PLUG] IPChains

Index(es):

Date

Thread