I'm having some trouble getting a set of IP Chains rulesets to work. Either I've got them setup wrong or something... I'm trying to block off the open port mysqld and lpd are lustening on on my external IP. I only need both of them to listen on the internal IP Address, cause most data flow to those programs occurs internally. Hence I'm trying to use IP Chains to block off their ports. A telnet to my IP Address on port 3306 fails, but you get a human readable error form MySQL saying your not allowed to connect. So I'm trying the following two IP Chains rules to block it. I think they are right and should do so: /sbin/ipchains -A input -i eth0 -p tcp -d $extip 3306 -l -j REJECT /sbin/ipchains -A input -i eth0 -p udp -d $extip 3306 -l -j REJECT $extip is my external IP.. However, after re-running the IP Chains script I have, a telnet to the external IP on 3306 still causes that error, and a netstat -r still shows a connection was made briefly. If there is anything messed up in my ruleset, let me know.. I took the portscan thingy at www.hackerwhacker.com and they said closing these two ports should be a priority. --Kumba __________________________________________________ Do You Yahoo!? Yahoo! Photos - 35mm Quality Prints, Now Get 15 Free! http://photos.yahoo.com/
Keep in touch with http://mandrakeforum.com: Subscribe the "[EMAIL PROTECTED]" mailing list.
