this is driving me crazy. i admit i suck at firewalling :)
BUT this just doesn't make sense. what im tryin to do with ipchains (works fine with ipfwadm) is for example: block port 111 both udp and tcp. the commands im using is: /sbin/ipchains -A input -s 0.0.0.0/0 -d 208.222.179.27 111 -p tcp -j DENY /sbin/ipchains -A input -s 0.0.0.0/0 -d 208.222.179.27 111 -p udp -j DENY the tcp filtering works fine according to nmap, but also according to nmap udp is not filtered, i am using nmap 2.2-BETA4 on linux 2.2.14 SMP i686(+ow2 from www.openwall.com/linux/) i am also testing it using nmap 2.30-BETA17 with the same results. i have tried both ipchains native and ipfwadm-wrapper, they give the same results, i can filter tcp no problem, but udp is acting really weird. maybe its a nmap problem ?? is there a better way to test a udp firewall ?? help! :) nate ----------------------------------------[mailto:[EMAIL PROTECTED] ]-- Vice President Network Operations http://www.firetrail.com/ Firetrail Internet Services Limited http://www.aphroland.org/ Everett, WA 425-348-7336 http://www.linuxpowered.net/ Powered By: http://comedy.aphroland.org/ Debian 2.1 Linux 2.0.36 SMP http://yahoo.aphroland.org/ -----------------------------------------[mailto:[EMAIL PROTECTED] ]-- 6:08pm up 7 days, 23:48, 1 user, load average: 0.10, 0.09, 0.05