iptables -N block iptables -A block -m state --state ESTABLISHED,RELATED -j ACCEPT iptables -A block -m state --state NEW -i ! ppp0 -j ACCEPT iptables -A block -j DROP
iptables -A INPUT -J block iptables -A FORWARD -j block
& using the /etc/init.d/iptables script.
In the kernel 2.4.19 I have ...
Y Network dev support/Universal TUN/TAP device driver Enables user space I/F between kernel and iptables prog
Y Networking options/Network packet filtering (replaces IP chains) Y For all the IP options that are needed M Networking options/IP netfilter config/IP tables support M For ALL the sub sections !!!
Y Network device support/PPP BSD compress compression Y Network device support/PPP deflate compression
I now have cause for concern that this firewall may not be working. I have descoverd that /var/log/messages contains ...
Dec 3 18:44:08 debian kernel: 0: nvidia: loading NVIDIA Linux x86 nvidia.o Kernel Modul
e 1.0-4349 Thu Mar 27 19:00:02 PST 2003
Dec 3 19:04:01 debian -- MARK --
Dec 3 19:24:01 debian -- MARK --
Dec 3 19:29:01 debian pppd[347]: pppd 2.4.1 started by ADT, uid 1003
Dec 3 19:29:01 debian pppd[347]: Using interface ppp0
Dec 3 19:29:01 debian pppd[347]: *kernel does not support PPP filtering*
Dec 3 19:29:01 debian pppd[347]: local IP address 10.64.64.64
Dec 3 19:29:01 debian pppd[347]: remote IP address 10.112.112.112
Am I missing a kernel module? If so which one ?
Dave
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]