Hi, my current setup from my router sends all unauthorised traffice to the DMZ, at this IP i have a P1 266 running 8.2, with ethereal i can see what traffic is being sent here. Now i have turned the firewall on and unchecked the allow traceroute box, and done have any services enabled in xinetd. The problem is this: Port 113 is showing as Closed on port scanners, i want the box to drop any packets to this port as it does on all others, not reject ! The box still replys to ICMP 8 pings, i dont want this, my idea is to log all incoming packets and not respond. I could do this when the box ran smoothwall using IPTABLES but i cannot find a similar config file in 8.2? Basically this machine will sit there log everything and never respond to anything. If anyone has any ideas please let me know. Rob
* Manx Biaggi;
The problem is this:
Port 113 is showing as Closed on port scanners, i want the box to drop any packets to this port as it does on all others, not reject !
The box still replys to ICMP 8 pings, i dont want this, my idea is to log all incoming packets and not respond. I could do this when the box ran smoothwall using IPTABLES but i cannot find a similar config file in 8.2?
Basically this machine will sit there log everything and never respond to anything.
If anyone has any ideas please let me know.
First of all please trim down your lines ie 72 characters per line get a copy of the unofficial SuSEfirewall2 manual from http://sourceforge.net/projects/susefaq and read the following parts 5.1.6 Configuring SUSEfirewall2 for traceroute 6.2 Identd Dilemma (port 113) 5.1.5 Allowing Ping Appendix A ICMP Types not every ICMP message is bad soemtimes you need the to understand the network problem Hope these help -- Togan Muftuoglu Unofficial SuSE FAQ Maintainer http://dinamizm.ath.cx
participants (2)
-
Manx Biaggi
-
Togan Muftuoglu