hi andrew...
imap connections will not timeout if you check for new mail
regularly...
for more ipchain/iptables examples and howtos..
c ya
alvin
http://www.Linux-Sec.net ... security stuff ..
On Sun, 27 May 2001, Andrew Perrin wrote:
> Thanks for all this. The reason I'd like the masqueraded
Thanks for all this. The reason I'd like the masqueraded connections never
to time out is that I'd like machines on my private network to be able to
maintain connections indefinitely - specifically, IMAP connections. I'd
like to be able to leave an IMAP client running on a machine and not get
TCP/I
For better stateful packet inspection I would recommend moving your
firewall from ipchains -> iptables which has a better stateful engine...
This will watch the related packets (ie- ftp & ftp-data) as well as the
connections already established...
Jeremy T. Bouse
Andrew Perrin was
Do something like:
# for initialisation - deny everything that will not be allowed later...
ipchains -P input DENY
ipchains -P forward DENY
ipchains -P output DENY
ipchains -F
# allow local things
ipchains -A input -j ACCEPT -i lo
ipchains -A output -j ACCEPT -i lo
# allow SSH connections from
Apologies if I've already asked this - I can't remember anymore!
I now have a DSL connection, and as such would like to use ipchains to do
the following:
1.) Deny all incoming packets coming in on eth1 (the card connected to the
DSL gateway) except those destined for port 22 (ssh) or ICMP packets
i really dont think you know what yer talkin about :)
what do u mean by 'stealth'
the firewall i set on your box will not affect outgoing traffic in any
way. and as for blocking 139, it is blocking it, showing it as 'closed'
is GOOD, that is what would show up if there was nothing running o
On Tue, 6 Jun 2000, Jay Kelly wrote:
> Hello Im running Potato for a firewall with ipchains. I would like to
> increase my security and currently have all ports stealth except 25 smtp, 79
> Finger, 80 http. If I make these ports stealth will this affect the ability
> to use the web and mail? I als
Hello Im running Potato for a firewall with ipchains. I would like to
increase my security and currently have all ports stealth except 25 smtp, 79
Finger, 80 http. If I make these ports stealth will this affect the ability
to use the web and mail? I also tried to make netbois stealth but if still
s
8 matches
Mail list logo