Do you have a question? Post it now! No Registration Necessary. Now with pictures!
- Posted on
- Flo Sidler
July 17, 2008, 3:33 pm
rate this thread
Eventhough nobody would ever want to attack a useless no-thing-doing
dedicated machine like mine, i want to add a little bit o fsecurity to
it by using a simple firewall.
I have, in the past, used "FireHOL" for these tasks.
Now, here's my problem:
I want my machine to generally allow all client ports but deny some,
and generally deny all server ports but allow some.
Now, denying all server ports but allowing specific ports is easy; By
simply writing a line for every server port i wish to allow, the rest
However, how do i set it up to allow all client ports, but deny some
I tried to do it like this:
client all accept # Generally accept all clients
client p2p deny # Block as potentially malicious
client pop3 deny # Block as potentially malicious
client pop3s deny # Block as potentially malicious
client dcc deny # Block as potentially malicious
client emule deny # Block as potentially malicious
client imap deny # Block as potentially malicious
client imaps deny # Block as potentially malicious
However, the services i wanted to deny are still open, as they seem to
be overwritten by the "all" statement on top. How do i achieve this?
Thanks in advance!
- » Cloud Ace Technologies is offering Implementation Services on Cloud Computing, Cloud Serv...
- — Newest thread in » Linux Security