Gregory Conron wrote:
On Sun, 09 Jan 2000, you wrote:
I am locking down a SuSE install to act as a firewall. Port 6000 is open (TCP), and I cant find any info on what this port is open for. Or how to close it. Any info would be greatly appreciated.
Port 6000 is opened by X. To close it when you start X, alias startx as 'startx -- -nolisten tcp'.
If you would still like to have it running on your intranet, you can use IP Chains to prevent the port from getting out of the firewall, like I have: # openwindows: establishing a connection /sbin/ipchains -A output -i eth0 -p tcp -y \ -s <123.45.6.78> \ -d Any/0 2000 -j REJECT # Xwindows: establishing a connection /sbin/ipchains -A output -i eth0 -p tcp -y \ -s <123.45.6.78> \ -d Any/0 6000 -j REJECT Replace the <123.45.6.78> with your external IP address. I picked up the book "Linux Firewall". After reading the book, I looking into the firewall implementation from SuSE 6.2's rc.config. I came to realize that there was a lot to be desired. I have used the CGI tool bon Rob Ziegler,the auther of the book "Linux Firewall", has on his web site (http://www.linux-firewall-tools.com/linux/). I have had to tweak the script that the site created for me, but I am very happy with the firewall. The script at Rob's site automatically blocks all the things like Xwindows and OpenWindows. The concept of his script is that nothing comes in or out of the firewall unless you put in an exception. The script covers all the major things, so if you have a normal setup, then the script should work for you. Take a look at it. I also recommend the book, it is very enlightening. Sam P.S. If you would like more help on this, let me know. I have also modifed the file /etc/rc.d/firewall to call my script rather then the default script. -- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/Support/Doku/FAQ/