[NCLUG] port monitorer
Sean Reifschneider
jafo at tummy.com
Mon Feb 19 01:58:20 MST 2001
On Sun, Feb 18, 2001 at 08:23:00PM -0700, Mark C. Smith wrote:
>My firewall is blocking a needed port for running icq, and I'm having
>a hard time finding it. I realize icq is *supposed* to use
I highly recommend that instead of just using an implicit "deny all" policy,
that you add a "deny all and log" rule at the end of your chains -- that
way you'll get a log of what's getting denied. Makes life much easier.
You'll probably find that you need to add some "deny but don't log" rules
for dumping garbage like Windows boxes trying to call the mother ship and
all though.
Sean
--
Millions long for immortality who don't know what to do with themselves
on a rainy Sunday afternoon. -- Heinlein
Sean Reifschneider, Inimitably Superfluous <jafo at tummy.com>
tummy.com - Linux Consulting since 1995. Qmail, KRUD, Firewalls, Python
More information about the NCLUG
mailing list