aru Posted January 14, 2003 Report Share Posted January 14, 2003 Dutch Frequent user Joined: 05 May 2002 Posts: 76 Location: UK Post Posted: Wed Jul 24, 2002 6:13 pm Post subject: Stealth firewall _________________________________________________________________ (Thanks to rolf for posting this info initially) If you want an easy to configure firewall that gives 'stealth' readings on www.grc.com, you can still use tinyfirewall. Pre-Mdk8.2 it formed part of Control Centre but no longer does, but it is still accessible as it is part of the drakxtools-newt package. Type tinyfirewall at the command line, answer a few Y or N questions, save and exit = stealth firewall in place. Ideal if you haven't got the time to learn/setup/test iptables etc - especially new converts from Windo$e........ Dutch Maciek Frequent user Joined: 04 Jul 2002 Posts: 86 Location: Perth Post Posted: Tue Oct 01, 2002 4:22 pm Post subject: _________________________________________________________________ The scanning at GRC.com is extremely limited. I suggest you try the following sources: http://crypto.yashy.com/nmap.php http://scan.sygatetech.com/ http://www.securitymetrics.com/firewall_test.adp http://www.auditmypc.com/ Use all of them for maximum security, plus use Nessus and nmap from a remote machine. fearby Newbie Joined: 27 Sep 2002 Posts: 9 Post Posted: Tue Oct 01, 2002 9:29 pm Post subject: Type tinyfirewall? _________________________________________________________________ If I type that nothing happens! Using Mandrake 9 - do I need to install any other packages? Dutch Frequent user Joined: 05 May 2002 Posts: 76 Location: UK Post Posted: Wed Oct 02, 2002 9:14 am Post subject: _________________________________________________________________ AFAIK, Mandrake have removed tinyfirewall from 9.0 - but I'm waiting for the discs to have a look! From what I've read, their replacement firewall seems a bit more problematic..... Dutch LB06 Newbie Joined: 16 Aug 2002 Posts: 4 Location: Hooge Mierde NL Post Posted: Sat Oct 05, 2002 11:42 am Post subject: _________________________________________________________________ Well, it's not Shorewall which is a problem, it's the mcc wizard that causes troubles (or at least in my case). When I first installed MDK9 and went through the connection sharing and firewall wizards properly, but after executing one of those wizards I didn't have internet access anymore (through cable). I configured the config files manually and everything worked properly. It's fully stealth now! tobyl Frequent user Joined: 01 May 2002 Posts: 115 Location: UK Post Posted: Sat Oct 05, 2002 10:31 pm Post subject: _________________________________________________________________ I agree with LB06 If you are worried about getting 'closed' rather than 'blocked' or 'stealth' when using shorewall, Go to /etc/shorewall/common.def, you will see some lines starting run iptables -A common ...... they have REJECT at the end. Change them to DROP I am still experimenting, as there is a REJECT in the policy file, but I don't think this matters as iptables takes up the first option it can, so it never gets there. one last thing, make the changes in the file, then in a terminal as root, type shorewall stop, then shorewall start. This will load yor new config without needing to reboot. Editor's note: This thread was originally posted at the old MUB (Mandrake User Board at club-nihil). This post is the result of a 99% automatic backup, so due to its nature some text may be lost (improbable but possible). Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.