>Can set the default policy explicitly to deny/reject,
>and/or can add a last rule to deny and/or log.
> ipchains -P input DENY
> ..series of ipchains accept rules...
> ipchains -A input -s 0.0.0.0/0 -d 0.0.0.0/0 -l -j REJECT
Thanks Dave,
Looks like my default policy configured by pmfirewall is already set to deny:
$IPCHAINS -A input -j DENY -l
Despite this there are several ports that show as open when I run nmap
locally and when I scan my ippaddress using third party servers.
Maybe I need to change my default input rule instead to '$IPCHAINS -P input
-j DENY -l'. Well I just did and restarted pmfirewall. Now to test it
against nmap and a few 3rd party servers.
Thanks.
Andre'
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
