On Sun, Aug 11, 2002 at 04:15:23PM -0700, Rick Moen wrote: > Suggestion: Study your machines using nmap. And don't start blocking > lots of ports without studying TCP/IP, first. For one thing, you > almost certainly need to be able to accept incoming connections on a > variety of high-numbered ports for normal operations.
Being someone who has a deny-by-default-accept-selectively set of IPTables rules for my external interface, I wonder: would you have any documents to recommend so I can learn about which of these high-numbered ports I need enabled so that "normal operations" work? So far (aside from running nmap and nessus on the internal interface allowing me to test each of my service configurations for known problems) I've used the output of netstat to allow me to see which ports I need open (the obvious services). I'm sure I'm missing out on the high-numbered ports you mention, though. TIA. --> Jijo -- Federico Sevilla III : <http://jijo.free.net.ph/> Network Administrator : The Leather Collection, Inc. GnuPG Key ID : 0x93B746BE _ Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph To leave: send "unsubscribe" in the body to [EMAIL PROTECTED] To subscribe to the Linux Newbies' List: send "subscribe" in the body to [EMAIL PROTECTED]
