Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in

  FAQ | Search | Memberlist | Usergroups | Statistics | Profile | Log in to check your private messages | Log in | Register

firehol port range
 View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Networking & Security
View previous topic :: View next topic  
Author Message
xierxior
Tux's lil' helper
Tux's lil' helper


Joined: 04 Feb 2004
Posts: 96
PostPosted: Fri Mar 11, 2005 1:31 am    Post subject: firehol port range Reply with quote
Code:

interface eth0 lan
policy drop
client dhcp accept
server ICMP accept
server ssh accept
client all accept
server ident reject with tcp-reset



that's my current firewall config i'd like to setup a tcp port range of 7000:8000 how would I do this?
Back to top
View user's profile Send private message
Jerri
Guru
Guru


Joined: 03 Apr 2003
Posts: 353
PostPosted: Fri Mar 11, 2005 4:14 am    Post subject: Reply with quote
Quote:
tcp port range of 7000:8000


that doesnt really tell us much.. If you are setting up a dedicated firewall... look into ipcop. it rules (thats sort of a non answer, but I just found it recently, after tyring out a bunch of others (manual iptables script / firehol etc.)
Back to top
View user's profile Send private message
xierxior
Tux's lil' helper
Tux's lil' helper


Joined: 04 Feb 2004
Posts: 96
PostPosted: Fri Mar 11, 2005 4:46 am    Post subject: Reply with quote
there should be a way to do it with firehol i'm not asking for anything difficult just a TCP port range a set of ports open between 7000 and 8000
Back to top
View user's profile Send private message
xierxior
Tux's lil' helper
Tux's lil' helper


Joined: 04 Feb 2004
Posts: 96
PostPosted: Fri Mar 11, 2005 9:56 am    Post subject: Reply with quote
I don't believe that NO ONE is running a port range to send file thought IRC and aim/yahoo/msn ?
Back to top
View user's profile Send private message
xierxior
Tux's lil' helper
Tux's lil' helper


Joined: 04 Feb 2004
Posts: 96
PostPosted: Sat Mar 12, 2005 9:50 pm    Post subject: Reply with quote
Code:

interface eth0 lan
policy drop
client dhcp accept
server ICMP accept
server ssh accept
client all accept
server ident reject with tcp-reset
iptables -A OUTPUT -p tcp -m tcp --dport 7000:8000 -j ACCEPT


Thanks for all the help... cough... gag...
Back to top
View user's profile Send private message
Ox-
Guru
Guru


Joined: 19 Jun 2003
Posts: 305
PostPosted: Sun Mar 13, 2005 1:23 am    Post subject: Reply with quote
Put the following somewhere at the top of your firehol.conf:
Code:
server_XXX_ports="tcp/7000:8000"
client_XXX_ports="default"
but change XXX to whatever you want of course.

Then you only need to add this to your interface block:
Code:
server XXX accept

Btw, the guy who wrote firehol is very very responsive on his sourceforge forum.
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Networking & Security All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



 Links: forums.gentoo.org | www.gentoo.org | bugs.gentoo.org | wiki.gentoo.org | forum-mods@gentoo.org

Copyright 2001-2025 Gentoo Foundation, Inc. Designed by Kyle Manna © 2003; Style derived from original subSilver theme. | Hosting by Gossamer Threads Inc. © | Powered by phpBB 2.0.23-gentoo-p11 © 2001, 2002 phpBB Group
Privacy Policy