On Thu, 4 Nov 2004 06:52:51 -0700
Dennis Kibbe <
dennisk@linuxquestions.net> wrote:
> On Thu, 4 Nov 2004 04:14:08 -0700 (MST)
> Jim <jnantz2@216-19-216-108.getnet.net> wrote:
>
> > What do I put in my rc.local file to tell iptables to block any ports I'm
> > not using? I have an IMAP server in case I want to check my email on my
> > windows box. I also run an SMTP server, but it's only for my own use. I
> > had a friend who knows more about linux than I do help me set it up so it
> > doesn't relay. It only accepts mail from my linux box and my windows
> > box.. I don't run telnet, but do have an ssh server and Apache.
> >
> > TIA
> >
> > Jim
>
> Anything put in rc.local won't be run until AFTER the network is up. The proper place for a firewall is (at least on Slackware) is /etc/rc.d/rc.firewall. If that script exists than /etc/rc.d/rc.inet2 will call it before the network is up.
>
> Plenty of firewall tutorials out there. Here's two sources:
>
> Ten Minute Firewall by Brian Hatch
> http://www.hackinglinuxexposed.com/articles/20021008.html
>
> LinuzGuruz
> http://www.linuxguruz.com/iptables/
>
> If I understand how iptables works, it's pretty simple.
>
> 1. Deny (DROP) all
> 2. Allow traffic on loopback
> 3. Write a rule for each service you need
>
> Dennisk
One more resource I wanted to include is the unofficial update to the Slackware Essentials Book found at:
http://slackbook.lizella.net/security.html
The security chapter shows how to disable unwanted services and how to write a simple firewall.
Dennisk
---------------------------------------------------
PLUG-discuss mailing list -
PLUG-discuss@lists.plug.phoenix.az.us
To subscribe, unsubscribe, or to change you mail settings:
http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
(text/plain)