Marc Mertes wrote:
> Hey Guys,
> 
> I run Shorewall 3.4.2 on a Ubuntu 6.06 server machine.
> My default policy is drop any,
> my rules begin with drop any and end with drop any

A real belt and suspenders man, I see.

> 
> After editing the files /usr/share/shorewall/action.Drop and Reject
> I was able to steath Port 113.

Two things.

a) The next time that you upgrade Shorewall, your changes to those files
will be overwritten. You need to copy the files to /etc/shorewall then
modify the copies.

b)  Don't come complaining to the list if you have outgoing connection
problems. For example, you will probably have difficuly connecting to IRC.

> But Port 1 (tcpmux) is still only closed.
> Does anybody know how to steath this port too?

Shorewall's default setup has no rules whatsoever for port 1.

-Tom
-- 
Tom Eastep    \ Nothing is foolproof to a sufficiently talented fool
Shoreline,     \ http://shorewall.net
Washington USA  \ [EMAIL PROTECTED]
PGP Public Key   \ https://lists.shorewall.net/teastep.pgp.key

Attachment: signature.asc
Description: OpenPGP digital signature

-------------------------------------------------------------------------
This SF.net email is sponsored by DB2 Express
Download DB2 Express C - the FREE version of DB2 express and take
control of your XML. No limits. Just data. Click to get it now.
http://sourceforge.net/powerbar/db2/
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users

Reply via email to