[plug] Lock the box
Beau Kuiper
ekuiperba at cc.curtin.edu.au
Fri Nov 5 14:07:44 WST 1999
On Fri, 05 Nov 1999, you wrote:
> G'day all,
> I'm after some advice regarding locking my box down pretty tight.
> I have a debian slink box, running 2.2.11 with ppp and diald masq'ing
> for my network.
> It's IP is 192.168.1.100 and the rest of the network is 192.168.1.*
> I pretty much want to deny all incomming connections to the box.
> I have commented out all the unused items in inetd.conf and
> done a killall -HUP inetd.
> netstat -na tells me that there are a lot less ports listening.
> Is there an easy way, using ipchains maybe, to deny all incomming
> connections,
> probably the easy way to do it, is block incomming from ppp0 ?
careful, if you are going to use the firewall stuff in linux, you must only
block incoming on system ports, you need open incoming ports to actually
connect out and do stuff out there :)
Beau Kuiper
ekuiperba at cc.curtin.edu.au
> I'm in the process of reading all the man pages and howto's I can
> get my hands on, but I don't really want to experiment too much
> as I'm using this as a samba server for some windows boxes and they
> tend to get upset when thier feed is cut off all of a sudden.
>
> Cheers all..
>
>
> --
> Brad. /"\
> \ / ASCII RIBBON CAMPAIGN
> X AGAINST HTML MAIL
> / \
More information about the plug
mailing list