> If you are running servers (including SSHD), your rules are not good at > all since they categorize traffic only by DEST PORT. Responses from > servers need to be categorized by SOURCE PORT.
I've been trying to get my mind around this but I can't seem to. Responses from my servers will have a DEST PORT too right? That won't work for classification? - Grant ------------------------------------------------------------------------------ This SF.net email is sponsored by: SourcForge Community SourceForge wants to tell your story. http://p.sf.net/sfu/sf-spreadtheword _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
