On Mon, 24 Sep 2001, Michael Schwendt wrote:
> On 2001-09-24, Jean Francois Ortolo wrote:
>
> >program. I can't deny any port above 1024, for these ones must be
> >available for any user.
>
> But sure can you deny e.g. TCP SYN access to all unprivileged ports
> and accept only incoming TCP reply packets and UDP. Note that the
> new netfilter code (iptables) is much more mighty than ipchains.
>
>
Hello Michael
Thanks. I've not been studying the iptables capabilities for the moment.
Sure I should take a look at the iptables program, then switch my firewall
to it. It could resolve some of the difficulties I encountered, such as the
fact that local ports while I'm ftp'ing, are beyond 32000, so that I'm
not even able to log the connection on local ports beyond 32000.
It's late, but not too late.
Thank you very much for your advice.
Best regards,
Jean Francois Ortolo
_______________________________________________
Seawolf-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/seawolf-list
