* Grant Parnell ([EMAIL PROTECTED]) wrote: > Just backing up what David said... > > Also, block ports 137,138,139,445 udp & tcp with the firewall. EG > iptables -A INPUT -i ppp0 -p udp --dport 137:139 -j DROP > iptables -A INPUT -i ppp0 -p udp --dport 445 -j DROP > iptables -A INPUT -i ppp0 -p tcp --dport 137:139 -j DROP > iptables -A INPUT -i ppp0 -p tcp --dport 445 -j DROP > assuming your public interface is ppp0 > You could also -j LOG but as you've already discovered there's thousands > of attempts on these ports
Thanks Grant, I had stopped samba, but now I've got rid of it altogether. Just for now I'm logging it out of curiosity, but htere's about 1 a minute, so that's very temporary. Thanks also to David last night. Nick
pgp00000.pgp
Description: PGP signature
-- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
