On Wed, Dec 01, 1999 at 01:56:15AM -0500, Jeffrey Hawkins wrote:
> Somebody a while back posted the IPCHAIN Rules for inhibiting
> the forwarding of NETBIOS Packets on a MASQ System. Could
> someone please resend that ruleset. I already have the Ignores
> in my DIALD Filter File, but I would also like to know how to do
> this with IPCHAINS. I have the Port Forward Wrapper representations
> of the Rules, but no IPCHAIN versions. Currently, I don't know
> the format differences without doing to some reading. I guess I
> am lazy...
If I was the one who posted those rules, they would be as follows:
ipchains -A input -s 0.0.0.0/0 netbios-ns -p udp -j DENY
ipchains -A input -d 0.0.0.0/0 netbios-ns -p udp -j DENY
ipchains -A input -s 0.0.0.0/0 netbios-ssn -p udp -j DENY
ipchains -A input -d 0.0.0.0/0 netbios-ssn -p udp -j DENY
ipchains -A input -s 0.0.0.0/0 netbios-ns -p udp -j DENY
ipchains -A input -d 0.0.0.0/0 netbios-dgm -p udp -j DENY
ipchains -A input -s 0.0.0.0/0 netbios-ns -p tcp -j DENY
ipchains -A input -d 0.0.0.0/0 netbios-ns -p tcp -j DENY
ipchains -A input -s 0.0.0.0/0 netbios-ssn -p tcp -j DENY
ipchains -A input -d 0.0.0.0/0 netbios-ssn -p tcp -j DENY
ipchains -A input -s 0.0.0.0/0 netbios-ns -p tcp -j DENY
ipchains -A input -d 0.0.0.0/0 netbios-dgm -p tcp -j DENY
This effectively blocks all packets of type netbios-ns, netbios-ssn,
or netbios-dgm in both tcp and udp form from or to any host on the
input chain.
It seems to work relatively well. YMMV.
HTH
Tim
-
To unsubscribe from this list: send the line "unsubscribe linux-diald" in
the body of a message to [EMAIL PROTECTED]
