On Saturday 08 December 2007, Andrey Falko wrote: > On Dec 8, 2007 8:35 AM, Grant <[EMAIL PROTECTED]> wrote: > > I have shorewall set up on my router but I haven't set up anything > > security-wise for my laptop which normally sits behind the router. > > What should I be setting up on the laptop in preparation for traveling > > and connecting via a foreign network or even directly to the Internet? > > I don't run sshd on the laptop. I would think shorewall, but am I > > forgetting anything? > > At the very least I'd do the following with iptables: > > iptables -P INPUT DROP > iptables -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT > iptables -A FORWARD -i eth0 -m state --state RELATED,ESTABLISHED -j ACCEPT
This line is only needed if you want to forward packets to another iface/device (i.e. when your laptop is acting as a router and the input interface is eth0). -- Regards, Mick
signature.asc
Description: This is a digitally signed message part.
