Archives
Archives
| From: | Martin Skarda <skarda@××××××××××××.de> | ||
|---|---|---|---|
| To: | gentoo-security@l.g.o | ||
| Subject: | Re: [gentoo-security] problem blocking udp packets with iptables | ||
| Date: | Fri, 24 Mar 2006 17:39:18 | ||
| Message-Id: | Pine.LNX.4.64.0603241815550.12862@persil.ruf.uni-freiburg.de | ||
| In Reply to: | Re: [gentoo-security] problem blocking udp packets with iptables by Matt Drew |
||
| 1 | On Thu, 23 Mar 2006, Matt Drew wrote: |
| 2 | |
| 3 | > You should be able to block this traffic at the Ethernet level using |
| 4 | > ebtables with something like this: |
| 5 | > |
| 6 | > ebtables [-t filter] -A INPUT -i eth0 -p ipv4 --ip-protocol 17 |
| 7 | > --ip-destination-port 67 -j DROP |
| 8 | > |
| 9 | > This drops incoming ethernet traffic to eth0 with an IPv4 protocol of |
| 10 | > 17 (UDP) destined for IP port 67. |
| 11 | > |
| 12 | |
| 13 | thanks for that juicy idea :-) |
| 14 | |
| 15 | rgds, |
| 16 | Martin |
| 17 | -- |
| 18 | gentoo-security@g.o mailing list |