On Saturday 10 Jul 2004 21:11, Simon wrote: > > D> Can somebody tell me how to stealth this port using Shorewall? > > ------------------------- > > Assumptions: > > > > You're using the default zones of loc (inside), net (outside), and fw > > (firewall/computer). > > > > You want to stealth this port on your firewall to the outside world. > > > > Using Shorewall 2.x > > ------------------------- > > > > Real simple. In your /etc/shorewall/rules file, simply add this line: > > > > DROP net fw tcp 11 > > What would the rules be to do the same for port 80 and port 135? > > Simon Utley. > Liverpool. UK.
DROP net fw tcp 113,80,135 will do what you want. (The original post had a typo) I am coming into this a bit late, but are you aware that a default Mandrake installation of shorewall will stealth ALL ports? You have to consciously unstealth a port if you want it to be visible to the internet. The line 'net all DROP info' in the file /etc/shorewall/policy makes all connections from the internet stealthed. derek -- www.jennings.homelinux.net http://twiki.mdklinuxfaq.org
____________________________________________________ Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com ____________________________________________________
