Gentoo Archives: gentoo-user

From:	James <wireless@×××××××××××.com>
To:	gentoo-user@l.g.o
Subject:	[gentoo-user] Re: OT: A netbios-ssn blocking rule?
Date:	Mon, 21 Aug 2006 04:16:07
Message-Id:	`loom.20060821T060849-267@post.gmane.org`
In Reply to:	Re: [gentoo-user] OT: A netbios-ssn blocking rule? by Daniel Iliev

1	> Daniel Iliev <danny <at> ilievnet.com> writes:
2
3
4	My iptables based firewall seem to be working, However, I keep getting triplets
5	of this activity:
6
7	curious.ip www.me.com tcp 2286 > netbios-ssn Seq=0 Len=0 MSS=1460
8	www.me.com curious.ip tcp netbios-ssn > 2286 [RST, ACK] Seq=0 Ack=1
9	Win=0 Len=0
10
11	similar problem (2469 > microsoft-ds)
12	Other problems are (info section is only difference) epmap > 3081
13
14
15
16	> "iptables -A INPUT -p tcp --dport microsoft-ds -j DROP" ( < the packets
17	> have destination the FW itself)
18	> "iptables -A FORWARD -d target-PC -p tcp --dport microsoft-ds -j DROP"
19	> ( < the packets have destination the "target-PC". )
20
21
22	Your advice is working, beautiful
23
24	Much Thanks!
25
26
27	James
28
29
30
31	--
32	gentoo-user@g.o mailing list

Subject	Author
Re: [gentoo-user] Re: OT: A netbios-ssn blocking rule?	Daniel Iliev <danny@××××××××.com>