On Mon, 19 Sep 2011 04:41:44 +0200, m...@smtp.fakessh.eu wrote: > Le lundi 19 septembre 2011 04:05, m...@smtp.fakessh.eu a écrit : >> hello shorewall list >> >> how to include this rule >> iptables -A OUTPUT -o eth0 -p tcp --tcp-flags RST RST -j DROP >> >> in shorewall config >> >> all testimonials are walcome > > and how to add this rule > iptables -A INPUT -p tcp ! --syn -m state --state NEW -j DROP > iptables -A INPUT -p tcp --tcp-flags ALL ALL -j DROP > iptables -A INPUT -p tcp --tcp-flags ALL NONE -j DROP > iptables -A INPUT -f -j DROP
http://manpages.ubuntu.com/manpages/hardy/man5/shorewall-policy.5.html and more info in man shorewall-policy, and i lost to give same about man shorewall-interfaces pretty much of that default rules are there :) PS: i hate ubuntuforums for letting google index pages that needs logins ! ------------------------------------------------------------------------------ BlackBerry® DevCon Americas, Oct. 18-20, San Francisco, CA Learn about the latest advances in developing for the BlackBerry® mobile platform with sessions, labs & more. See new tools and technologies. Register for BlackBerry® DevCon today! http://p.sf.net/sfu/rim-devcon-copy1 _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
