Re: [Masq] What is Blocked

Wed, 13 Dec 2000 07:32:49 -0800 

/* HINT: Search archives @ http://www.indyramp.com/masq/ before posting! 
/* ALSO: Don't quote this header. It makes you look lame :-) */


The two services blocked are

sunrpc          111/tcp    SUN Remote Procedure Call
sunrpc          111/udp    SUN Remote Procedure Call
and
rpc2portmap     369/tcp    rpc2portmap
rpc2portmap     369/udp    rpc2portmap

Your forth line is incorrect. It should probably be a UDP instead of another
TCP.

Port 111 is the port predominantly used by hackers for intrusion. I register
anywhere from 5 to 15 attempts a week on our systems.


Email and DNS is not affected by these entries. They have their own port
numbers.

Sincerely,

Karsten Jeppesen


----------
>From: SoloCDM <[EMAIL PROTECTED]>
>To: "Masq (Request)" <[EMAIL PROTECTED]>
>Subject: [Masq]  What is Blocked
>Date: Tue, Dec 12, 2000, 20:47
>

> /* HINT: Search archives @ http://www.indyramp.com/masq/ before posting!
> /* ALSO: Don't quote this header. It makes you look lame :-) */
>
>
> What is blocked by the following ipchains?  Will the internal network
> continue to function without interruption?  Will email and the name
> server pass in and out of the network to the ISP?
>
> $IPCHAINS -A input -l -p tcp -s $ALLADDR -d $EXTERNAL_NET 111 -j DENY
> $IPCHAINS -A input -l -p udp -s $ALLADDR -d $EXTERNAL_NET 111 -j DENY
> $IPCHAINS -A input -l -p tcp -s $ALLADDR -d $EXTERNAL_NET 369 -j DENY
> $IPCHAINS -A input -l -p tcp -s $ALLADDR -d $EXTERNAL_NET 369 -j DENY
>
> Note: When you reply to this message, please include
>       the mailing list and my email address.
>
> *********************************************************************
> Signed,
> SoloCDM
>
> _______________________________________________
> Masq maillist  -  [EMAIL PROTECTED]
> Admin requests can be handled at http://www.indyramp.com/masq-list/ --
> THIS INCLUDES UNSUBSCRIBING!
> or email to [EMAIL PROTECTED]
>
> PLEASE read the HOWTO and search the archives before posting.
> You can start your search at http://www.indyramp.com/masq/
> Please keep general linux/unix/pc/internet questions off the list.

_______________________________________________
Masq maillist  -  [EMAIL PROTECTED]
Admin requests can be handled at http://www.indyramp.com/masq-list/ -- 
THIS INCLUDES UNSUBSCRIBING!
or email to [EMAIL PROTECTED]

PLEASE read the HOWTO and search the archives before posting.
You can start your search at http://www.indyramp.com/masq/
Please keep general linux/unix/pc/internet questions off the list.

Reply via email to