On Thursday 06 June 2002 5:56 pm, Tom Eastep wrote: > Some FTP sites use auth which can cause connection timeouts with that > ruleset. For safety, I recommend adding > > iptables -A INPUT -p tcp --dport 113 -j REJECT
Yes, good point. I'm thinking of a way to get IDENT requests classified as RELATED, so you can either do this without leaving port 113 visible by the RSTs it sends, or even get the IDENTs sent through to the original client for it to deal with.... Antony.
