On Thu, 4 Nov 2004 04:14:08 -0700 (MST)
Jim <
jnantz2@216-19-216-108.getnet.net> wrote:
> What do I put in my rc.local file to tell iptables to block any ports I'm
> not using? I have an IMAP server in case I want to check my email on my
> windows box. I also run an SMTP server, but it's only for my own use. I
> had a friend who knows more about linux than I do help me set it up so it
> doesn't relay. It only accepts mail from my linux box and my windows
> box.. I don't run telnet, but do have an ssh server and Apache.
>
> TIA
>
> Jim
Anything put in rc.local won't be run until AFTER the network is up. The proper place for a firewall is (at least on Slackware) is /etc/rc.d/rc.firewall. If that script exists than /etc/rc.d/rc.inet2 will call it before the network is up.
Plenty of firewall tutorials out there. Here's two sources:
Ten Minute Firewall by Brian Hatch
http://www.hackinglinuxexposed.com/articles/20021008.html
LinuzGuruz
http://www.linuxguruz.com/iptables/
If I understand how iptables works, it's pretty simple.
1. Deny (DROP) all
2. Allow traffic on loopback
3. Write a rule for each service you need
Dennisk
---------------------------------------------------
PLUG-discuss mailing list -
PLUG-discuss@lists.plug.phoenix.az.us
To subscribe, unsubscribe, or to change you mail settings:
http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
(text/plain)