Re: [fw-wiz] Blocking MS Blaster
From: Martin Peikert (lists_at_nolog.org)
Date: 08/15/03
- Previous message: Paul Robertson: "Re: [fw-wiz] worm + VPN + firewall"
- In reply to: arnaud DUPUIS: "[fw-wiz] Blocking MS Blaster"
- Next in thread: Martin Peikert: "Re: [fw-wiz] Blocking MS Blaster"
- Reply: Martin Peikert: "Re: [fw-wiz] Blocking MS Blaster"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: firewall-wizards@honor.icsalabs.com Date: Fri, 15 Aug 2003 16:19:32 +0200
arnaud DUPUIS wrote:
> ${FW} -A inet-lan -p tcp -m multiport --dports 135,137,139,445,593,69,4444 -j
> DROP
> ${FW} -A inet-lan -p udp -m multiport --dports 135,137,139,445,593,69,4444 -j
> DROP
> ${FW} -A lan-inet -p tcp -m multiport --dports 135,137,139,445,593,69,4444 -j
> DROP
> ${FW} -A lan-inet -p udp -m multiport --dports 135,137,139,445,593,69,4444 -j
> DROP
If your firewall is set to be the default gw in your lan, I would add
such rules for lan-lan too. Laptops connected to the internet elsewhere
and then attached to your lan could possibly infect your lan...
GTi
_______________________________________________
firewall-wizards mailing list
firewall-wizards@honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
- Previous message: Paul Robertson: "Re: [fw-wiz] worm + VPN + firewall"
- In reply to: arnaud DUPUIS: "[fw-wiz] Blocking MS Blaster"
- Next in thread: Martin Peikert: "Re: [fw-wiz] Blocking MS Blaster"
- Reply: Martin Peikert: "Re: [fw-wiz] Blocking MS Blaster"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
