On Mon, 19 Sep 2011 04:41:44 +0200, [email protected] wrote: > Le lundi 19 septembre 2011 04:05, [email protected] a écrit : >> hello shorewall list >> >> how to include this rule >> iptables -A OUTPUT -o eth0 -p tcp --tcp-flags RST RST -j DROP >> >> in shorewall config >> >> all testimonials are walcome > > and how to add this rule > iptables -A INPUT -p tcp ! --syn -m state --state NEW -j DROP > iptables -A INPUT -p tcp --tcp-flags ALL ALL -j DROP > iptables -A INPUT -p tcp --tcp-flags ALL NONE -j DROP > iptables -A INPUT -f -j DROP
http://manpages.ubuntu.com/manpages/hardy/man5/shorewall-policy.5.html and more info in man shorewall-policy, and i lost to give same about man shorewall-interfaces pretty much of that default rules are there :) PS: i hate ubuntuforums for letting google index pages that needs logins ! ------------------------------------------------------------------------------ BlackBerry® DevCon Americas, Oct. 18-20, San Francisco, CA Learn about the latest advances in developing for the BlackBerry® mobile platform with sessions, labs & more. See new tools and technologies. Register for BlackBerry® DevCon today! http://p.sf.net/sfu/rim-devcon-copy1 _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
