Re: [leaf-user] Bering/Shorewall

Tom Eastep Mon, 16 Dec 2002 06:59:08 -0800

--On Monday, December 16, 2002 01:24:49 -0500 Brad Fritz <[EMAIL PROTECTED]> wrote:

It is probably worth mentioning that, by default, shorewall
silently rejects SMB and NMB traffic:


  $ grep -e 135 -e 137 -e 445 /etc/shorewall/common.def
  run_iptables -A common -p udp --dport 137:139     -j REJECT
  run_iptables -A common -p udp --dport 445         -j REJECT
  run_iptables -A common -p tcp --dport 135         -j reject

That's a bit of a mis-statement. IF SMB and NMB traffic is going to be rejected or dropped by the relevant policy THEN Shorewall silently rejects it.

-Tom
--
Tom Eastep \ Shorewall - iptables made easy
Shoreline, \ http://shorewall.sf.net
Washington USA \ [EMAIL PROTECTED]

-------------------------------------------------------
This sf.net email is sponsored by:
With Great Power, Comes Great Responsibility Learn to use your power at OSDN's High Performance Computing Channel
http://hpc.devchannel.org/
------------------------------------------------------------------------
leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html

Re: [leaf-user] Bering/Shorewall

Reply via email to