On 2005-06-07 [EMAIL PROTECTED] wrote: > I'm makara, a student from Cambodia.I saw a lot of samples about > iptables most of these samples not specific OUTPUT, and a little > accept all OUTPUT by default. Could you tell me why?(I think OUTPUT is > the most importance part. It protect the viruses send something from > LAN to external).
The OUTPUT chain handles outbound packets from localhost. Packets from your LAN will be handled by the FORWARD chain. However, it is futile to try and stop malware from sending stuff by using packet filters. If a box in your LAN got infected: backup your data and reinstall the operating system. That's the only reasonable way to handle that kind of crap, unless you want to do an in-depth forensic examination of that box. > And hope you give me any idea from my firewall script if possible I > hope you tell me what line I shouldn't use, why and what should I use. This list is not the right place to give you a full introduction on iptables, but netfilter.org holds lots of documentation. Regards Ansgar Wiechers -- "All vulnerabilities deserve a public fear period prior to patches becoming available." --Jason Coombs on Bugtraq -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
