On Thu, 4 Nov 2004 04:14:08 -0700 (MST)
Jim <jnantz2@216-19-216-108.getnet.net> wrote:

> What do I put in my rc.local file to tell iptables to block any ports I'm
> not using?  I have an IMAP server in case I want to check my email on my
> windows box.  I also run an SMTP server, but it's only for my own use.  I
> had a friend who knows more about linux than I do help me set it up so it
> doesn't relay.  It only accepts mail from my linux box and my windows
> box..  I don't run telnet, but do have an ssh server and Apache.
> 
> TIA
> 
> Jim

Anything put in rc.local won't be run until AFTER the network is up.  The proper place for a firewall is (at least on Slackware) is /etc/rc.d/rc.firewall.  If that script exists than /etc/rc.d/rc.inet2 will call it before the network is up.

Plenty of firewall tutorials out there. Here's two sources:

Ten Minute Firewall by Brian Hatch
http://www.hackinglinuxexposed.com/articles/20021008.html

LinuzGuruz
http://www.linuxguruz.com/iptables/

If I understand how iptables works, it's pretty simple.

1. Deny (DROP) all
2. Allow traffic on loopback
3. Write a rule for each service you need

Dennisk
---------------------------------------------------
PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us
To subscribe, unsubscribe, or to change  you mail settings:
http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss