Hi Werner
How thoroughly do you understand iptables? Is this truly a stateful
firewall? With these rules, does it mean that I can deny/reject all
incoming packets unless they are in response to a conversation that was
initiated from the inside?
Any idea how it compares to the *bsd stateful firewall support?
thanks
charles
On Tue, 3 Apr 2001, Werner Puschitz wrote:
>
> You might want to use the new "stateful firewall" feature in the
> 2.4 kernel. So uou need to upgrade the kernel to 2.4 on RH7.0. Also you
> need to recompile the kernel with this feature enabled.
> I recompiled the kernel on Wolverine and used the following iptables
> commands to setup a stateful firewall:
>
> /sbin/iptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
> /sbin/iptables -A INPUT -j DROP
> or
> /sbin/iptables -A INPUT -j REJECT
>
> Werner
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
