On Fri, 7 Apr 2000, Jati Kusuma wrote:
> cukup banyak port yang yang saya tutup.
> eeeeee
> malah nggak bisa telnet.
> ping pun nggak bisa.
> apa ping ada hubungannya protokol icmp yang saya tutup ?
>
> ipchains -A forward -s 0.0.0.0/0 -d 192.168.0.0/24 -p icmp -j DENY
Ini cuplikan saya dapat dr hasil scan port.
If you'd like to speed up the test, tell your firewall to REJECT
connections instead of DENYING them. If the terms REJECT or DENY are
different for your firewall, REJECT means to send an icmp unreacheable
back to the sender. DENY means to simply drop the packet without
informing the sender.
Their are both pros and cons to each way. If you DENY packets, then it
takes longer for a hacker to scan you, however, a machine with DENY in
force is obvious and this tells the hacker you have a firewall
present. REJECTING fools the hacker that your ports are not open (even
if they are) but it allows scans to be MUCH faster (20 times faster or
more).
Enakan pakai REJECT ?
TIA
~yudi
--------------------------------------------------------------------------
Utk berhenti langganan, kirim email ke [EMAIL PROTECTED]
Informasi arsip di http://www.linux.or.id/milis.php3
Pengelola dapat dihubungi lewat [EMAIL PROTECTED]
