[ LUGOS-SEC ] Re: [ LUGOS ] Firewall (fwd)
jernej horvat
j na kid.kibla.org
Pon Jan 10 00:10:52 CET 2000
---------- Forwarded message ----------
Date: Sun, 9 Jan 2000 22:11:16 +0100 (CET)
From: jernej horvat <j na kid.kibla.org>
To: lugos-sec na lugos.si
Subject: Re: [ LUGOS-SEC ] Re: [ LUGOS ] Firewall
On Sat, 8 Jan 2000, Andrej Presern wrote:
> Hm. Pretirano se res nisem poglabljal, vendar:
> [!] -y, --syn
> Only match TCP packets with the SYN bit set and the
> ACK and FIN bits cleared. Such packets are used to
hmmm..potem bi slo to>
input, forward deny
output allow
allow tcp,udp 0 - 1023 (WKP)
allow tcp,udp 1024-65535 -y
kewl...problem bi bili servisi, ki uporabljajo porte nad 1023 za
vzpostavljanje povezave (squid)...ampak en allow vec v skripti ne bo
skodil, ne ?
--
"We're Americans, do you know what that means? It means our forefathers
were kicked out of every decent country in the world." - Bill Murray.
> All the standard disclaimers apply. <
Join Slovenia RC5/DES/CSC team:
http://stats.distributed.net/rc5-64/tmsummary.php3?team=935
Dodatne informacije o seznamu Starilist