Below my simple firewall script that sits on every machine in a local network comprising 107 machines. #!/bin/bash iptables --policy INPUT DROP iptables --policy OUTPUT DROP iptables --policy FORWARD DROP iptables -N stop iptables -A stop -m state --state ESTABLISHED,RELATED -j ACCEPT iptables -A stop -m state --state NEW -i ! ppp0 -j ACCEPT iptables -A stop -p icmp -m state --state INVALID -j DROP iptables -A stop -j DROP iptables -A INPUT -j stop iptables -A OUTPUT -j stop iptables -A FORWARD -j stop iptables -vL I have not heard any complains yet. I hope it can be of use! -- Regards: Kalevi Nyman - Linux IS userfrienly! It makes friends with all willing to learn!
Attachment:
signature.asc
Description: Detta =?ISO-8859-1?Q?=E4r?= en digitalt signerad meddelandedel