> >Are you using ipchains? If so, these lines might help:
> >
> >ipchains -A forward -p tcp -d 0/0 1024:5999 -j ACCEPT
> >ipchains -A forward -p udp -d 0/0 1024:5999 -j ACCEPT
> >ipchains -A forward -p tcp -d 0/0 6010: -j ACCEPT
> >ipchains -A forward -p udp -d 0/0 6010: -j ACCEPT
> >
> >These two lines tell ipchains to open non-proviledged ports from 1024 up
> >to 4999 using tcp and udp. Since non-proviledged ports are usually
> >harmless to have open, this should be fine. The exception is ports
> >6000-6010, which are used by X, and a potential security hole.
You also want to watch out for rpc services that live up high (like nfsd).
--
John
---------------------------------------------------------------------------
Send administrative requests to [EMAIL PROTECTED]
