On Thu, 4 Nov 2004 06:52:51 -0700 Dennis Kibbe wrote: > On Thu, 4 Nov 2004 04:14:08 -0700 (MST) > Jim wrote: > > > What do I put in my rc.local file to tell iptables to block any ports I'm > > not using? I have an IMAP server in case I want to check my email on my > > windows box. I also run an SMTP server, but it's only for my own use. I > > had a friend who knows more about linux than I do help me set it up so it > > doesn't relay. It only accepts mail from my linux box and my windows > > box.. I don't run telnet, but do have an ssh server and Apache. > > > > TIA > > > > Jim > > Anything put in rc.local won't be run until AFTER the network is up. The proper place for a firewall is (at least on Slackware) is /etc/rc.d/rc.firewall. If that script exists than /etc/rc.d/rc.inet2 will call it before the network is up. > > Plenty of firewall tutorials out there. Here's two sources: > > Ten Minute Firewall by Brian Hatch > http://www.hackinglinuxexposed.com/articles/20021008.html > > LinuzGuruz > http://www.linuxguruz.com/iptables/ > > If I understand how iptables works, it's pretty simple. > > 1. Deny (DROP) all > 2. Allow traffic on loopback > 3. Write a rule for each service you need > > Dennisk One more resource I wanted to include is the unofficial update to the Slackware Essentials Book found at: http://slackbook.lizella.net/security.html The security chapter shows how to disable unwanted services and how to write a simple firewall. Dennisk --------------------------------------------------- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change you mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss