Hi! I was wondering if anyone could(in a few lines) tell me what ports MUST BE OPEN to make DNS and FTP work. It feels like I have to open "too much" since DNS and FTP(at least that is what I have experienced) seems to "come in" on other ports than expected. I know, I should probably log everything and do every kind of access to see what I need to leave open. I did that, but I guess in my case I am unable to get enough parameters. I am looking for advice like(just an example): DNS Allow incoming TCP from any port destined port 53/42 Allow incoming UDP from any port destined port 53 Allow outgoing TCP from port 53/42 destined for any port Allow incoming TCP from any port above 1024 destined for port 53/42 etc etc FTP Allow incoming TCP from any port destined port 20 Allow incoming TCP from any port destined port 21 Allow outgoing TCP from port 20 destined for any port Allow outgoing TCP from port 21 destined for any port bla bla bla bla And what about 113? Can I shut that totally? I would like to tighten my ipchains scripts and it would be great if someone could say "This is what is required". Also, my ftp is unavailable from certain clients probably due to closed ports. Thanks in advance! //OLAS - [To unsubscribe, send mail to [EMAIL PROTECTED] with "unsubscribe firewalls" in the body of the message.]
