Mailinglist Archive: opensuse-security (320 mails)

< Previous Next >
SuSEfirewall2
  • From: Greg Jamison <GregJ@xxxxxxxxxxxx>
  • Date: Thu, 29 May 2003 15:25:12 -0600
  • Message-id: <4D018CBFCB66D511AA1E0000D16AF29B013A8A55@xxxxxxxxxxxxxxxxxxxxxxx>
Hello,

I am new to the SuSEfirewall, but have quite a bit of experience with
iptables. There are a few rules I used in iptables that I can't seem to find
equivalents for with the SuSEfirewall. Specifically the following:

-A INPUT -i eth0 -p tcp --syn -j DROP (This drops all TCP syn packets
received on eth0)

-A INPUT -i eth0 -p tcp -m state --state INVALID,NEW -j DROP (This drops any
TCP traffic received on eth0 not generated by my firewall or internal
network)

Is there any way I can accomplish the same with the SuSEfirewall? Any help
is greatly appreciated. Thanks!

Greg Jamison
< Previous Next >