Firewall Wizards mailing list archives

Previous By Date Next
Previous By Thread Next

RE: IPChains ?

From: "Chris Beckwith" <chris.beckwith () bogusmove com>
Date: Wed, 21 Feb 2001 18:30:07 -0000
I presume you mean you want to stop incoming SYN's, thus preventing
incoming connections, but allowing outgoing connections... If so...
you can achieve this by "-j ACCEPT ! -y" applied to incoming packets
with a source of 0.0.0.0/0 and a destination of your host or network.
Don't filter the SYN's from your host or network to the internet
though or you won't be able to make outgoing connections.


-----Original Message-----
From: firewall-wizards-admin () nfr com
[mailto:firewall-wizards-admin () nfr com]On Behalf Of Darich Runyan
Sent: 21 February 2001 13:46
To: firewall-wizards () nfr com
Subject: [fw-wiz] IPChains ?


Is there a way with IPChains to deny inbound packets with 
flags other than
SYN if they did not originate from my system?  I have setup a 
rule that
disallows SYN connections ( using the -j DENY -y -l options ) to the
external interface, but in order for the company internet 
access to work, it
seems that I needed to allow the other flagged packets in.

Any assistance with this would be appreciated.

Thanks in advance for the help.
Darich

_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://www.nfr.com/mailman/listinfo/firewall-wizards

_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://www.nfr.com/mailman/listinfo/firewall-wizards
Previous By Date Next
Previous By Thread Next

Current thread: