Security Basics mailing list archives
Re: Firewall, ping and nmap
From: getting_out <getting_out () tele2 it>
Date: Tue, 04 Nov 2003 22:13:06 +0100
sebastian wrote: [...]
iptables -A OUTPUT -o $ext -p icmp -m state --state NEW,RELATED,ESTABLISHED -j ACCEPT
[...]I'm not proof in firewalling, but with this line, I'm adding a rule to table OUTPUT in witch I've no restricion. I don't think this could help me; but I could be in wrong too ;).
My trouble is why on an interface I can receive a ping (ppp0) and not on an another (eth0) if I've not added an interface specification to the rules?
D. --------------------------------------------------------------------------- Forum Systems PRESIDIO: PGP / XML GATEWAY APPLIANCEThe Presidio integrates PGP data encryption and XML Web Services security to simplify the management and deployment of PGP and reduce overall PGP costs by up to 80%. FREE WHITEPAPER & 30 Day Trial - http://www.securityfocus.com/sponsor/ForumSystems_security-basics_031027 ----------------------------------------------------------------------------
Current thread:
- Firewall, ping and nmap getting_out (Nov 03)
- Message not available
- Re: Firewall, ping and nmap getting_out (Nov 05)
- Message not available