Hi Liste, Sind folgende IPchains configuration ok? Ich blicke hier nicht durch. Danke für Kommentare ggf. Tips!!! root@linux:/home/roman > ipchains -L Chain input (policy DENY): target prot opt source destination ports ACCEPT all ------ anywhere anywhere n/a DENY all ----l- Afde8.pppool.de anywhere n/a DENY all ----l- loopback/8 anywhere n/a DENY all ----l- anywhere loopback/8 n/a ACCEPT icmp ----l- Afde8.pppool.de anywhere source-quench ACCEPT icmp ----l- anywhere Afde8.pppool.de echo-request ACCEPT icmp ------ anywhere Afde8.pppool.de echo-reply ACCEPT icmp ------ anywhere Afde8.pppool.de destination-unreachable ACCEPT icmp ------ anywhere Afde8.pppool.de time-exceeded ACCEPT icmp ------ anywhere Afde8.pppool.de parameter-problem REJECT tcp -y---- anywhere anywhere any -> ident DENY tcp -y--l- anywhere Afde8.pppool.de any -> printer DENY tcp ------ anywhere Afde8.pppool.de any -> printer DENY tcp -y--l- anywhere Afde8.pppool.de any -> 1024 DENY tcp ------ anywhere Afde8.pppool.de any -> 1024 DENY tcp -y--l- anywhere Afde8.pppool.de any -> 6000 DENY tcp ------ anywhere Afde8.pppool.de any -> 6000 ACCEPT tcp -y--l- anywhere Afde8.pppool.de any -> 1024:65535 ACCEPT tcp ------ anywhere Afde8.pppool.de any -> 1024:65535 ACCEPT tcp !y---- anywhere Afde8.pppool.de any -> ipcserver:65535 ACCEPT tcp !y---- anywhere Afde8.pppool.de any -> ftp-data ACCEPT udp ------ anywhere Afde8.pppool.de any -> 1024:65535 DENY all ------ anywhere 255.255.255.255 n/a DENY all ------ 255.255.255.255 anywhere n/a DENY all ------ anywhere !Afde8.pppool.de n/a DENY icmp ----l- anywhere anywhere source-quench DENY icmp ----l- anywhere anywhere redirect DENY icmp ----l- anywhere anywhere echo-request DENY icmp ----l- anywhere anywhere time-exceeded DENY tcp ------ anywhere anywhere any -> epmap:netbios-ssn DENY tcp -y--l- anywhere anywhere any -> any DENY udp ------ anywhere anywhere any -> epmap:netbios-ssn DENY udp ----l- anywhere anywhere any -> any DENY all ------ anywhere anywhere n/a Chain forward (policy DENY): target prot opt source destination ports DENY tcp -y--l- anywhere anywhere any -> any DENY all ------ anywhere anywhere n/a Chain output (policy ACCEPT): target prot opt source destination ports ACCEPT all ------ anywhere anywhere n/a DENY icmp ----l- Afde8.pppool.de anywhere time-exceeded DENY icmp ----l- Afde8.pppool.de anywhere destination-unreachable ACCEPT icmp ------ anywhere anywhere any -> any ACCEPT tcp ------ anywhere anywhere ssh -> any ACCEPT tcp ------ anywhere anywhere any -> ssh ACCEPT udp ------ anywhere anywhere any -> syslog ACCEPT udp ------ anywhere anywhere any -> snmptrap ACCEPT tcp ------ anywhere anywhere ftp-data -> any ACCEPT tcp ------ anywhere anywhere http -> any root@linux:/home/roman > exit MfG roman