Does anyone here use IPtables and have a cable modem? (or simliar connection). What ports do you filter and not filter? I'm tempted to block almost everything but I started wondering that if there were some ports that were essential to leave open...
I guess for those of us that get our ip address dynamically, should we allow dhcp packets? Whenever I test my configuration using nmap or the "Shields Up" on www.grc.com, it lists the ports I am blocking as "Stealth" or "Filtered". Is there a way to make iptables reject packets the exact same way that the kernel would normally do? Or is it better for the system to not even ackknowledge that there is listening on a given port... Thanks -Alex
