Then, why appear this(sudo lsof -nP -iTCP -sTCP:LISTEN)
sshd 2275 root 3u IPv4 24181 0t0 TCP *:22 (LISTEN)
The port 22 is LISTEN, i only have this rules:
----------------------------------------------------------
Invalid(DROP) net $FW tcp
# Drop Ping from the "bad" net zone.. and prevent your log from being
flooded..
Ping(DROP) net $FW
# Permit all ICMP traffic FROM the firewall TO the net zone
ACCEPT $FW net icmp
ACCEPT net $FW tcp 80,443
---------------------------------------------------------------------------
Matt Darfeuille <m...@shorewall.org> escribió:
On 5/16/2020 7:53 PM, merlinverde...@infomed.sld.cu wrote:
Would this rule ensure that only port 80 can be used with tcp?
ACCEPT all $FW tcp www
All inbound connections to the firewall on port(80) http will be
accepted from anywhere.
--
Would this rule ensure that only port 80 can be used with tcp?
ACCEPT all $FW tcp www
Policy file is:
#SOURCE DEST POLICY LOGLEVEL RATE CONNLIMIT
$FW net ACCEPT
net all DROP info
all all DROP info
thanks
_______________________________________________
Shorewall-users mailing list
Shorewall-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/shorewall-users
----------------------------------------------------------------
This message was sent using IMP, the Internet Messaging Program.
--
Este mensaje le ha llegado mediante el servicio de correo electronico que
ofrece Infomed para respaldar el cumplimiento de las misiones del Sistema
Nacional de Salud. La persona que envia este correo asume el compromiso de usar
el servicio a tales fines y cumplir con las regulaciones establecidas
Infomed: http://www.sld.cu/
_______________________________________________
Shorewall-users mailing list
Shorewall-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/shorewall-users
