Hi, I've read the Firewall FAQ and didn't find an answer to my problem. I understand that ipchains may be useful for a router to filter out some packets or restrict some services to specific hosts, but I'm just running a webserver on a single machine with usual services. I don't need to restrict the access to some hosts for the ports where a service is running (http, ftp, smtp, ssh, bind) and I don't mind filtering out other ports as no process is running to deal witht he packets anyway. I'm using an IDS (snort) because I'm curious to see if someone wants to break in, but my current conclusion is to say that I don't need any ipchain rule. Did I miss something ?
Thanks for any hint ! Julien ___________________________________________________________ Do You Yahoo!? -- Pour faire vos courses sur le Net, Yahoo! Shopping : http://fr.shopping.yahoo.com
