[plug] IPCHAINS
Matt Kemner
zombie at wasp.net.au
Fri May 18 15:20:08 WST 2001
On Fri, 18 May 2001, Anthony J. Breeds-Taurima wrote:
> On Fri, 18 May 2001 Simon.Scott at flexiplan.com wrote:
>
> > Would changing IPCHAINs rules break current connections?
> If would break your current connections.
Only if you want it to.. :)
For TCP you can break new incoming connections only by filtering out only
the SYN packets. (with the -y flag)
ipchains -A input -p tcp -d <your ip> 21 -y -j REJECT
Also, even if you filter out all packets coming in on port 21, any files
currently being transferred will continue, because they are on port 20.
- Matt
More information about the plug
mailing list