The quick an easy method would be: ipchains -A input -p tcp -y -l -j DENY doing this will allow tcp connections ONLY initiated by you to communicate with the box (Note: there are scans types that can sneak past this) but general scans won't even be responded to (so you can with your "stealth" token :) ) since you seem to want people to beable to access your port 80 then putting a rule like: ipchains -I input -d 1.1.1.1 80 -l -j ACCEPT (replace 1.1.1.1 with your ip) ident is only needed by some irc networks.. if the ones you feel you need to access require this.. then add the appropriate rule.. btw there are lots of ipchains howtos out there.. read up.. :) /"\ . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . \ / ASCII Ribbon Campaign [EMAIL PROTECTED] X - NO HTML/RTF in e-mail http://www.curious.org/ / \ - NO Word docs in e-mail "This quote is false." -anon On Thu, 12 Oct 2000, m20bi wrote: > Hi! > > I'm building a WebDAV/DeltaV playground for a consultant on a Linux box of > his -- part-time job for this part-time student. On my personal Gateway (W98 > SE), I use the ZoneAlarm freeware because I have a cable modem and the > Gateway is always connected to the Internet. ZoneAlarm is a firewall for the > masses -- just download, install and it works without any tweaking -- or > much understanding on my part. <g> When I run the GRC Port Probe test > www.grc.com) my Gateway, everything "shows" up as running in Stealth. Makes > me happy. > > Different story on the Linux box (which has its own cable connection to the > net). It's interaction should be limited to the http (for serving and > surfing), kibitz, irc (X-chat and BitchX) and maybe, maybe talk. (No > email -- I'm content to use Hotmail.) When I run the GRC Port Probe on the > Linux box, ports 25 (SMTP) and 113 (IDENT) show up as Open. The other ports > show up as Closed -- not Stealth. > > Is there a simple utility I can slap on this Linux box -- similar to > idiot-proof ZoneAlarm -- that will put all the superfluous ports in Stealth > mode? > > Barbara (using Linux since September 2000) > > PS Do I need port 113 (IDENT) for IRC? > > > _______________________________________________ > techtalk mailing list > [EMAIL PROTECTED] > http://www.linux.org.uk/mailman/listinfo/techtalk > _______________________________________________ techtalk mailing list [EMAIL PROTECTED] http://www.linux.org.uk/mailman/listinfo/techtalk
