At 08:08 AM 1/25/2002 -0500, daRcmaTTeR wrote: >Lee Roberts wrote: >> >> At 08:47 AM 1/22/2002 -0600, Tom Brinkman wrote: >> >On Tuesday 22 January 2002 01:34 am, Andrew George wrote: >> > >> >> Odd...I've got Bastille running and the UDP scan at sygatetech.com >> >> can't find one open port >> > >> > That's my experience too Andrew, with several versions of 8.x thru >> >8.2 (cooker). I just use the simple basitlle firewall config in MCC. >> >Just for grins I also install portsentry, the rpm >> >(portsentry-1.1-3mdk) completely sets up portsentry config and starts >> >it on boot. All the scans at sygatetech report my box (dialup) is >> >locked up jelly tight. >> > >> >> I sure would like to know what you guys did different from me........ >> > >I'm coming into the thread a little late, but what is it that you're >attempting to do. I've been using Bastille-firewall very successfully >for a long time with absolutely no trouble at all. I do know that >Bastille-firewall is a very good intermediate-user-level program to get >the basic firewall started and running. After that point though the user >should have, at least, a working understanding of Iptables and rulesets >to fine tune the firewall on the machine and/or network. > >of course the more understanding and knowledge the user has the better >the firewall and the less work it is to setup and make work. >
I made the statement that none of my UDP ports are blocked. Most are showing closed but there are a couple showing open. I would have expected that the default policy would be DENY but that doesn't appear to be the case. I'm trying to learn the details about creating iptables so that I can resolve this issue. Also, I am allowing access to TCP port 22 (using Bastille) but I can't seem to connect to it even though a port scan shows it open (just another problem with Bastille). Like I previously stated, it's a good thing I don't have anything on the Linux box that needs to be secured at this time. :-D
Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
