-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Sunday 01 June 2003 23:05, John Andersen wrote:
On Sunday 01 June 2003 19:35, John wrote:
Steve talked about how ZoneAlarm "adaptively stealths" port 113, is there some way to get SuSEFirewall2 to do this also?
Read the /sbin/SuSEfirewall2 script and search for 113. Yyou can stealth it if you want. I have, and don't have problems with my isp, other than alot of 113 packets dropped in my firewall logs.
Be prepared for posts telling you not to do it though. :-)
Heh...so far yours is the only answer Zentara. I've been waiting to hear any other opinions before I called my ISP and asked them if I can stealth 113.
You shouldn't need any permission to stealth that. Its your computer. The down side is occasional slow mail delivery outbound when they query back. You have to wait for it to time out (sometimes as much as 30 seconds) for each email you send.
Instant rejection is the preferred method. But if you want to drop these packets, you may considder a rule that allows them from certain hosts such as any you forward your mail to.
-- _____________________________________ John Andersen
Okay, thanks John. I'd just thought that if I stealthed that port, that my ISP might drop my connection more often since they wouldn't be able to 'ident' me (but I guess this is where my running GAIM during the time I'm on the 'net will allow me to stay up). What do you mean by "instant rejection"? Remember, I'm network stupid (much worse than 'ignorant', because I just can't seem to understand this stuff no matter *how* much I read or ask), and me trying to 'make some rules', would be like dropping me into the head supervisor's seat at NASA during a shuttle launch...things would instantaneously start to 'go wrong'. John - -- I needed fresh bugs for my SuSE gecko, and Linux penguin. So I went out and caught this huge ugly blue and red and green and yellow butterfly. They won't need fresh food for 3 months now. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.2 (GNU/Linux) iD8DBQE+23M8H5oDXyLKXKQRAoNuAJ4zw/DXiwgb55owM+lntWJPod57dgCdG4Hi wwiF+76hHvrSnMALhnF/3mA= =ZZw0 -----END PGP SIGNATURE-----