28 Nov
2003
28 Nov
'03
14:42
I should probably integrate this with /etc/sysconfig/scripts/ SuSEfirewall2-custom, but I use the following to discard some of the uninteresting traffic prior to SuSEfirewall2 logging: #!/bin/sh -x iptables -F msrpc iptables -N msrpc iptables -A msrpc -p tcp -m tcp --dport 135 -j DROP iptables -A msrpc -p tcp -m tcp --dport 136 -j DROP iptables -A msrpc -p tcp -m tcp --dport 137 -j DROP iptables -A msrpc -p tcp -m tcp --dport 138 -j DROP iptables -A msrpc -p tcp -m tcp --dport 139 -j DROP iptables -A msrpc -p tcp -m tcp --dport 445 -j DROP iptables -A msrpc -p tcp -m tcp --dport 593 -j DROP iptables -I INPUT -i eth0 -j msrpc