| Author |
Message |
Blop001
|
|
Post subject: 5830 Firewall - SPI
 Posted: Nov 03, 2006 - 10:38 AM
|
|
Bug Member
Joined: Aug 09, 2005
Posts: 28
Status: Offline
|
|
Hi all!
I have just upgraded the 5830 to the latest firmware and used the excuse to do some much needed tweeking to the firewall..
i use p2p a bit for linux distros etc and although i think i have my firewall tight i use PEERGUARDIAN a p2p firewall app to keep as safe as possible. Now the thing is it picks up much more than i think should get through...
I have set the packet filtering firewall to NONE and turned the SPI firewall to on...and ran this script.
# Firewall script - Statefull firewall script
# For DSL router
#flush all existing filters
remote ipfilter flush input internet
remote ipfilter flush output internet
remote ipfilter flush transmit internet
remote ipfilter flush receive internet
eth ip filter flush input
eth ip filter flush output
eth ip filter flush transmit
eth ip filter flush receive
firewall delete all
#MINIMUN
#Internet and email SMTP POP3 and ftp OUTfirewall allow -a HTTP -d out
firewall allow -a HTTP -q -d out
firewall allow -a HTTPS -d out
firewall allow -a DNS -d out
firewall allow -a SMTP -d out
firewall allow -p tcp -dp 110 -d out
firewall allow -a FTP -q -d out
#Ping and Traceroute from Lan to WAN
firewall allow -p icmp -sp 8 -dp 0 -q -d out
firewall allow -a TRACEROUTE -q -d out
#telnet on port 5606
firewall allow -p tcp -dp 5606 -q -d in
#"safe ports" yet to be confirmed
#firewall allow -p tcp -dp 1024:65535 -q -d out
#firewall allow -p udp -dp 1024:65535 -q -d out
#EXTRA
#Emule
firewall allow -p tcp -dp 4662 -q -d in
firewall allow -p udp -dp 4672 -q -d in
#web interface
firewall allow -p tcp -dp 4711 -q -d in
#Radmin on port 5607 NOT IN USE
firewall allow -p tcp -dp 5607 -q -d in
#BitTorrent on port 5608
firewall allow -p tcp -dp 5608 -q -d in
#TightVNC
firewall allow -p tcp -dp 5800 -q -d in
firewall allow -p tcp -dp 5900 -q -d in
now i was under the impression the firewall would drop anything not listed...but it doesnt it. Peerguardian seems itself to be blocking connections to ports on the private list and also transmissions from ports on 192.168.254.254.....
im very puzzled any help would be appreciated!
many thanks!!! |
|
|
| |
|
|
|
 |
|
TheBoy
|
|
|
Post subject: RE: 5830 Firewall - SPI
Posted: Nov 06, 2006 - 09:44 PM
|
|
Bug Mod
Joined: Jun 24, 2004
Posts: 550
Location: Northamptonshire UK
Status: Offline
|
|
Your are correct, the firewall will drop all not listed. Bear in mind you have pretty much allowed everything out though...
I/C will only be stuff you allow.
Peerguardian is not a firewall, and only drops stuff from known IPs not specific ports (I would have to ask why you run it if all you are doing is downloading linux distro  , and why you use eDonkey network)... |
_________________
TheBoy
2Mb Zen ADSL with 16 IPs
6.3Mb BT MaxDSL with dynamic IP
Hosting http://www.omegaowners.com from Zen ADSL
|
| |
|
|
|
|
|
|
| |
FAQ
Search
Register
Log in to check your private messages
Log in
