
Hello, I am new to the SuSEfirewall, but have quite a bit of experience with iptables. There are a few rules I used in iptables that I can't seem to find equivalents for with the SuSEfirewall. Specifically the following: -A INPUT -i eth0 -p tcp --syn -j DROP (This drops all TCP syn packets received on eth0) -A INPUT -i eth0 -p tcp -m state --state INVALID,NEW -j DROP (This drops any TCP traffic received on eth0 not generated by my firewall or internal network) Is there any way I can accomplish the same with the SuSEfirewall? Any help is greatly appreciated. Thanks! Greg Jamison

On Thursday 29 May 2003 23:25, Greg Jamison wrote:
Hello,
I am new to the SuSEfirewall, but have quite a bit of experience with iptables. There are a few rules I used in iptables that I can't seem to find equivalents for with the SuSEfirewall. Specifically the following:
-A INPUT -i eth0 -p tcp --syn -j DROP (This drops all TCP syn packets received on eth0)
-A INPUT -i eth0 -p tcp -m state --state INVALID,NEW -j DROP (This drops any TCP traffic received on eth0 not generated by my firewall or internal network)
Is there any way I can accomplish the same with the SuSEfirewall? Any help is greatly appreciated. Thanks!
Greg Jamison
I think you have to put your own rules in a file called /etc/SuSEfirewall2-custom. This way they would be included. Fabio
participants (2)
-
fabio de francesco
-
Greg Jamison