[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [suse-security] Problems Understanding SuSEfirewall2

To: JLeicher@xxxxxx
Subject: Re: [suse-security] Problems Understanding SuSEfirewall2
From: Arjen Runsink <arjen@xxxxxxxxxxx>
Date: Mon, 19 May 2003 09:17:31 +0200
Cc: suse-security@xxxxxxxx
Delivered-to: mailing list suse-security@xxxxxxxx
Delivery-date: Mon, 19 May 2003 09:18:13 +0200
Envelope-to: suse@xxxxxxxxxxxxxxxxxxxxxxxxxxxxx
In-reply-to: <013201c31dd0$3ce8d200$29379386@xxxxxxxxxxxxxxxxxxxxx>
List-help: <mailto:suse-security-help@suse.com>
List-post: <mailto:suse-security@suse.com>
List-subscribe: <mailto:suse-security-subscribe@suse.com>
List-unsubscribe: <mailto:suse-security-unsubscribe-suse=archive.cert.uni-stuttgart.de@suse.com>
Mailing-list: contact suse-security-help@xxxxxxxx; run by ezmlm
References: <013201c31dd0$3ce8d200$29379386@xxxxxxxxxxxxxxxxxxxxx>
User-agent: Internet Messaging Program (IMP) 3.2.1

Quoting remote <remote@xxxxxxxxxxxxxxxxxxxxxxx>:

> Hi !
> 
> I seem to have a problem with SuSEfirewall2. I administrate a Linux
> router
> LAN except for the following protocols/ports : pop3, pop3s, http,
> https,
> ftp,
> ftps, smtp, ssh, domain. 
> I also have to keep the port 7271 open for licensing purposes.

You should read the manual and general networking how-to stuff. You are
giving acces from the internet to setup a connection to your network
(and the firewall explicitely which is wrong
> Please help !

For brevity I only show what should be changed.

BB, Arjen


FW_AUTOPROTECT_SERVICES="yes"
 
FW_SERVICES_EXT_TCP=""
 
FW_SERVICES_EXT_UDP=""
 
FW_SERVICES_INT_TCP=""

FW_SERVICES_INT_UDP=""
 
FW_ALLOW_INCOMING_HIGHPORTS_TCP="no"

FW_ALLOW_INCOMING_HIGHPORTS_UDP="no"

FW_SERVICE_AUTODETECT="yes"
 
FW_SERVICE_DNS="no"
 
FW_FORWARD="100.120.55.18,100.120.204.51,tcp,7127 \
100.120.55.18,100.120.204.56,tcp,7127 \
100.120.55.18,100.120.204.58,tcp,7127"

FW_KERNEL_SECURITY="yes"

-------------------------------------------------
This mail sent through IMP: http://horde.org/imp/


-- 
Check the headers for your unsubscription address
For additional commands, e-mail: suse-security-help@xxxxxxxx
Security-related bug reports go to security@xxxxxxx, not here

Follow-Ups:
- Re: [suse-security] Problems Understanding SuSEfirewall2
  - From: remote
- Re: [suse-security] Problems Understanding SuSEfirewall2
  - From: Togan Muftuoglu

References:
- [suse-security] Problems Understanding SuSEfirewall2
  - From: remote

Prev by Date: [suse-security] Problems Understanding SuSEfirewall2
Next by Date: Antw: [suse-security] Problems Understanding SuSEfirewall2
Previous by thread: [suse-security] Problems Understanding SuSEfirewall2
Next by thread: Re: [suse-security] Problems Understanding SuSEfirewall2
Index(es):
- Date
- Thread