SuSEpersonal firewall
Hi, i modified the personal-firewall script so the output became Chain input (policy ACCEPT): target prot opt source destination ports devchain all ------ anywhere anywhere n/a Chain forward (policy ACCEPT): Chain output (policy ACCEPT): Chain rulchain (1 references): target prot opt source destination ports DENY tcp ------ anywhere anywhere any -> filenet-nch:32800 DENY tcp ------ anywhere anywhere any -> 6000:6255 DENY tcp ------ anywhere anywhere any -> printer DENY tcp ------ anywhere anywhere any -> sunrpc DENY udp ------ <ip> anywhere domain -> any DENY udp ------ <ip> anywhere domain -> any DENY icmp ------ anywhere anywhere redirect REJECT tcp -y--l- anywhere anywhere any -> any Chain devchain (1 references): target prot opt source destination ports rulchain tcp ------ anywhere anywhere any -> telnet Chain maschain (0 references): but still the ports was open: Starting nmap V. 2.53 by fyodor@insecure.org ( www.insecure.org/nmap/ ) Interesting ports on bifrost.northernsecurity.net (xxx.xxx.xxx.xxx): (The 1519 ports scanned but not shown below are in state: closed) Port State Service 111/tcp open sunrpc 515/tcp open printer 6000/tcp open X11 32770/tcp open sometimes-rpc3 Nmap run completed -- 1 IP address (1 host up) scanned in 0 seconds what did i do wrong? (yes, this was after rebooting) cheers Thomas -- thomas@northernsecurity.net | www.northernsecurity.net PGP: 4315 81B3 9E7F DC00 63DC F1D8 1326 651B AADE 91FC (sourceCode == freeSpeech)
participants (1)
-
Thomas Sjogren