gentuxx wrote: > Actually, some of those ports are UDP. /etc/services says the same for > both TCP and UDP. So if -p is required for --dport, you would have to > add rules for UDP as well. > > iptables -A FORWARD -d *target-PC* -p udp --dport 137:139 -j DROP > iptables -A INPUT -p udp --dport 137:139 -j DROP >
gentuxx, I'm not 100% sure about this, but I think MS NetBIOS doesn't use UDP (only TCP). However theoretically you are absolutely right. -- Best Regards, Daniel -- gentoo-user@gentoo.org mailing list
