> Here are the rules I use on my firewall:
> #----------------------------------------------------
> # Firewall traffic
> echo "Allowing firewall traffic"
>
> # Allow outside to reply to firewall but not to
> # iniatite connections. This is required for
> # masqueraded connections and SOCKS5 proxy to work
> # ONLY unpriviledged traffic here
>
> ipchains -A input -p tcp -y -i $EXTERNAL_INTERFACE \
> -d $EXTERNAL_IP $UNPRIVPORTS -l -j DENY
> ipchains -A input -p tcp -i $EXTERNAL_INTERFACE \
> -d $EXTERNAL_IP $UNPRIVPORTS -j ACCEPT
>
Any comments on what you do at the UDP level for the UNPRIVPORTS? Do you
DENY, ACCEPT or REJECT?
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
