My firewall is connected to a cablemodem, and it hit me that
the cable co.
must be doing some filtering on UDP 137-139 (probably due to all the
complaints about Windows Network File Shares being easy to
access/browse),
and they must be dropping those packets so my firewall never
sees it
Have you tried recompiling the kernel and removing all the modules and
tidbits you do not really need, compacting it down to a nice little thing,
as kernels go, and then tested? Do your tests show the packets on the
wire and or hitting a boxen behind the testfirewall?
But, if you have not,
Gene,
Regarding your email with reference to SMB getting through chains. You need
to block the
TCP ports - 137 through 139 as well.
Cu
AnthonyB
Date: Wed, 17 Nov 1999 23:23:23 -0500
From: "Gene Lee" [EMAIL PROTECTED]
Subject: ipchains letting NetBIOS through?
I am running a firewall using
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I am finding ipchains can be pretty picky. Example:
ipchains -I input -j ACCEPT -p udp -s x.x.x.21 514 -d x.x.x.15 514
it dropped every packet from .21 514 pointed at .15 514. This fixed
it:
ipchains -I input -j ACCEPT -p udp -s x.x.x.21/32 514
