Hi, I have had a port scan of my SuSEFirewall2 done at grc.com, they reported everything is stealth, except port 113(ident) and 5000(UPnP), which are closed. I can see where 113 is controlled in the firewall script, but I can't figure out where UPnP 5000 is controlled. Where do I disable that? -- $|=1;while(1){print pack("h*",'75861647f302d4560275f6272797f3');sleep(1); for(1..16){for(8,32,8,7){print chr($_);}select(undef,undef,undef,.05);}}
Closed = disabled. If you want the firewall to drop connection requests (aka stealth), see: FW_ALLOW_INCOMING_HIGHPORTS_TCP="ftp-data" FW_ALLOW_INCOMING_HIGHPORTS_UDP="domain time ntp" in /etc/rc.confic.d/firewall.rc.config HTH, Jeffrey Quoting zentara <zentara@gypsyfarm.com>:
Hi, I have had a port scan of my SuSEFirewall2 done at grc.com, they reported everything is stealth, except port 113(ident) and 5000(UPnP), which are closed. I can see where 113 is controlled in the firewall script, but I can't figure out where UPnP 5000 is controlled. Where do I disable that?
On Thu, 7 Feb 2002 15:28:59 -0600 Jeffrey Taylor <jeff.taylor@ieee.org> wrote:
Closed = disabled.
If you want the firewall to drop connection requests (aka stealth), see:
FW_ALLOW_INCOMING_HIGHPORTS_TCP="ftp-data" FW_ALLOW_INCOMING_HIGHPORTS_UDP="domain time ntp"
in /etc/rc.confic.d/firewall.rc.config
Thank you Jeff!!! Now my port scans show total stealth. (I had to edit the firewall script to stealth port 113; but I use a remote smtp server with my dialup anyways.) -- $|=1;while(1){print pack("h*",'75861647f302d4560275f6272797f3');sleep(1); for(1..16){for(8,32,8,7){print chr($_);}select(undef,undef,undef,.05);}}
participants (2)
-
Jeffrey Taylor -
zentara