Thanks a lot for your help and advice. Everything appears to be in stealth
mode over at SheildsUp!
I guess it would serve me well to study iptables so I can learn more about
what goes on under IPCop's hood. Thanks again for pointing me in the right
direction.
Steve
- -----Original Message-----
From:
plug-discuss-admin@lists.plug.phoenix.az.us
[
mailto:plug-discuss-admin@lists.plug.phoenix.az.us]On Behalf Of Jonathan
Claxton
Sent: Tuesday, May 03, 2005 10:36 AM
To: Plug-Discuss@Lists. Plug. Phoenix. Az. Us
Subject: Re: IPCop v1.4.5 Configuration
On Sun, 1 May 2005, Wagner, Steven G wrote:
>
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> I just got my IPCop up this morning, but I'm not sure how to disable ping
> requests. Does anyone know offhand how to do this?
>
I also run IPCop on my firewall box... VERY nice. As for the pings,
welll.. I had to modify a rule in IPCop for this. Look for a filename
named /etc/rc.d/rc.firewall. Look for the following string:
/sbin/iptables -A INPUT -p icmp --icmp-type 8 -j ACCEPT
Repleace the word ACCEPT with DROP. Reboot. That should fix the pings
being anwserable to the internet. Also, save a copy of this file OUTSIDE
of the IPCop box since sometimes an IPCop update can clobber it and then
you have to refer back to this email. :)
> Also, any other suggestions in regards to securing IPCop would be greatly
> appreciated as I am new to IPCop and networking in general.
>
> My Network=
>
> Net --> IPCop --> switch --> PIII/WindozeXP & Sempron/WindozeXP.
>
> At www.grc.com ShieldsUp!'s port scan revealed that my port 113 was
> responding, but the connection was closed. I read a bit about port 113 and
> decided to redirect any requests to that port to another unusable IP. Now
> all ports show stealth mode.
>
There is a setting for this on one of the screens to turn it off, problem
is I'm at work and my IPCop box is at home... if you can wait for a bit of
spell, I can get that info to you.
- ---------------------------------------------------
PLUG-discuss mailing list -
PLUG-discuss@lists.plug.phoenix.az.us
To subscribe, unsubscribe, or to change you mail settings:
http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
- --
No virus found in this incoming message.
Checked by AVG Anti-Virus.
Version: 7.0.308 / Virus Database: 266.11.2 - Release Date: 5/2/2005
- --
No virus found in this outgoing message.
Checked by AVG Anti-Virus.
Version: 7.0.308 / Virus Database: 266.11.2 - Release Date: 5/2/2005
---------------------------------------------------
PLUG-discuss mailing list -
PLUG-discuss@lists.plug.phoenix.az.us
To subscribe, unsubscribe, or to change you mail settings:
http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss