Tom Eastep wrote: > mattjackets wrote: >> On Sun, 26 Aug 2007 07:39:36 -0700, "Tom Eastep" <[EMAIL PROTECTED]> >> said: >>> mattjackets wrote: >>>> I hope this is a quick question for the experts...I'm at a loss as to >>>> how to do this: >>>> Drop packets with dest port 4321 with the rst flag set. >>>> >>>> Here's what the rule I have in mind would look like (iptables -L) >>>> target prot opt source destination >>>> DROP tcp -- anywhere anywhere tcp >>>> dpt:4321 flags:RST/RST >>>> >>>> How can this be done in the shorewall rules file? or do I need to >>>> create a special macro or something? >>>> >>>> >>> Use an Action defined with an Extension script. The best short example is >>> probably this one: >>> >>> http://www.shorewall.net/3.0/shorewall_extension_scripts.htm#NFQUEUE >>> >>> -Tom >> >> Tom, >> >> I quickly scanned the document you linked, and have a few questions. > > I've spent thousands of hours designing, writing and documenting > Shorewall. Please do me the courtesy of reading the documentation > carefully and completely before asking for me to spend more of my time > helping you. >
In a second email, I referred you to another article about Actions -- that is the document that you should be reading firest. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ [EMAIL PROTECTED] PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now >> http://get.splunk.com/
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
