Re: [fw-wiz] Blocking MS Blaster

From: Martin Peikert (lists_at_nolog.org)
Date: 08/15/03

  • Next message: Paul Matuszewski: "[fw-wiz] pix 501 as bridge firewall. Possible?"
    To: firewall-wizards@honor.icsalabs.com
    Date: Fri, 15 Aug 2003 16:19:32 +0200
    
    

    arnaud DUPUIS wrote:

    > ${FW} -A inet-lan -p tcp -m multiport --dports 135,137,139,445,593,69,4444 -j
    > DROP
    > ${FW} -A inet-lan -p udp -m multiport --dports 135,137,139,445,593,69,4444 -j
    > DROP
    > ${FW} -A lan-inet -p tcp -m multiport --dports 135,137,139,445,593,69,4444 -j
    > DROP
    > ${FW} -A lan-inet -p udp -m multiport --dports 135,137,139,445,593,69,4444 -j
    > DROP

    If your firewall is set to be the default gw in your lan, I would add
    such rules for lan-lan too. Laptops connected to the internet elsewhere
    and then attached to your lan could possibly infect your lan...

    GTi

    _______________________________________________
    firewall-wizards mailing list
    firewall-wizards@honor.icsalabs.com
    http://honor.icsalabs.com/mailman/listinfo/firewall-wizards


  • Next message: Paul Matuszewski: "[fw-wiz] pix 501 as bridge firewall. Possible?"

    Relevant Pages

    • Re: How save is a Windows PC on a Linux network.
      ... firewall between the dialup and the internal lan. ... Being of sound mind and body, I never surf with the Windows machine and ... Assuming you trust your firewall, and you know what's running on the ... I have to have it on the lan to access the Linux servers but sometimes it ...
      (comp.os.linux.misc)
    • Re: OWA
      ... 'Thats good news at least about the firewall. ... Tried them both earlier and same error message - 403. ... get ths same error message in and outside of the LAN? ...
      (microsoft.public.backoffice.smallbiz2000)
    • Re: How to stealth against ping/echo requests?
      ... I just started using the Online-Armor firewall. ... Some ports are even open. ... Are you behind a router? ... Every time it founds a new LAN, it asks if you want to trust it ...
      (comp.security.firewalls)
    • Re: Wohin mit dem OpenVPN Server?
      ... Ich geb dem Server eine öffentliche IP und setze ihn in die DMZ, ... Adresse über die Firewall von der DMZ aus ins LAN verbinden... ... Ein kompromittierter VPN-Server ...
      (de.comp.security.firewall)
    • Re: [SLE] Firewall zones
      ... Looking at the firewall configuration in Yast, ... My network card is assigned its IP address by the router using DHCP. ... It connects to the LAN and to the router; the router in turn talks to the ... All the systems on the LAN are supposed to have the same firewall protection, ...
      (SuSE)