[Gllug] Security & closing ports on certain interfaces.
Jackson, Harry
HJackson at colt-telecom.com
Thu Feb 14 11:06:04 UTC 2002
> -----Original Message-----
> From: Zverina, David [mailto:David.Zverina at uk.wmmercer.com]
>
> ipchains -A input -p tcp --destination-port 6000 -i ppp0 -j DENY
>
> The above line will discard tcp packets that are:
> 1. Incoming and addressed to port 6000 (X) and
> 2. come in along the ppp0 interface.
>
> Repeat for any other ports that you want to filter.
>
>
> Then stick these commands into /etc/rc.d/rc.local so that you are
> automatically protected whenever you reboot.
>
> Cheers,
>
> Dave.
I have looked at putting my iptables script into rc.local but I believe that
you can edit the init.d/iptables file directly so that you can get the
benefit of the start and stop routines as well. I have also looked at
iptables-save but not figured it out yet.
Harry
*************************************************************************************
COLT Telecommunications
Registered in England No. 2452736
Registered Office: Bishopsgate Court, 4 Norton Folgate, London E1 6DQ
Tel. 020 7390 3900
This message is subject to and does not create or vary any contractual
relationship between COLT Telecommunications, its subsidiaries or
affiliates ("COLT") and you. Internet communications are not secure
and therefore COLT does not accept legal responsibility for the
contents of this message. Any view or opinions expressed are those of
the author. The message is intended for the addressee only and its
contents and any attached files are strictly confidential. If you have
received it in error, please telephone the number above. Thank you.
*************************************************************************************
--
Gllug mailing list - Gllug at linux.co.uk
http://list.ftech.net/mailman/listinfo/gllug
More information about the GLLUG
mailing list