On Sunday 14 Dec 2003 5:45 pm, Kaj Haulrich wrote: > In my Shorewall GUI everything is unchecked, so I figured all was > well. However, a stealth scan at http://sygatetech.com reveals that > the following ports are closed, but not stealthed : > > WEB 80 > IDENT 113 > NetBIOS 139 > SMB 445 > > How can I stealth them ? - Does it matter ? > > Thanks in advance, > > Kaj Haulrich.
Shorewall is a lot easier to manage through editing the config files than the Mandrake GUI Just edit /etc/shorewall/rules The text is self explanatory. I suspect those ports are configured as 'REJECT' which will cause them to appear as 'closed' in your firewall test. Configure them as 'DROP' and they should appear 'stealthed' After any change restart shorewall with shorewall restart If the ports are not listed at all, then shorewalls behaviour will be controlled by the default rules in /etc/shorewall/policy If everything looks OK, but the test still shows open ports, then it is possible that the test has not been able to determine your IP address correctly, and you are actually testing one of your ISPs servers. derek -- ---------------------------------- www.jennings.homelinux.net http://twiki.mdklinuxfaq.org
Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com