Hi there,
I am in a process of developing a firewall for the purpose of blocking/filtering port scans on my host machines.
I am looking on how to properly write rules to block SYN, FIN, XMAS and NULL scans. What I have found so far is to allow just SYN packets and block everything else. I don't really like this idea and would like to write specific filter rules for each of the scans I mentioned.
Any help would be much appreciated.
Express yourself instantly with MSN Messenger! MSN Messenger
