From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from nsfone.fone.net ([206.168.68.96])
	by speech.braille.uwo.ca with esmtp (Exim 3.36 #1 (Debian))
	id 1G0PPh-0004Ld-00
	for <speakup@braille.uwo.ca>; Tue, 11 Jul 2006 17:05:01 -0400
Received: from mail2.fone.net (mail2.fone.net [206.168.68.165])
	by nsfone.fone.net (8.13.6+Sun/8.12.10) with ESMTP id k6BL0SIN005495
	for <speakup@braille.uwo.ca>; Tue, 11 Jul 2006 15:00:28 -0600 (MDT)
Received: from gramdmasfury (ip-206-123-194-13.static.fasttrackcomm.net
	[206.123.194.13])
	by mail2.fone.net (8.13.6+Sun/8.12.10) with SMTP id k6BL2kXA027140
	for <speakup@braille.uwo.ca>; Tue, 11 Jul 2006 15:02:54 -0600 (MDT)
Message-ID: <001001c6a52d$97463570$6501a8c0@gramdmasfury>
From: "Tyler Littlefield" <compgeek13@gmail.com>
To: "Speakup is a screen review system for Linux." <speakup@braille.uwo.ca>
Subject: iptables questions
Date: Tue, 11 Jul 2006 15:04:23 -0600
MIME-Version: 1.0
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2800.1807
X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2800.1807
X-PMX-Version: 4.7.1.128075, Antispam-Engine: 2.4.0.264935,
	Antispam-Data: 2006.6.13.95433
Content-Type: text/plain;
	charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
X-Content-Filtered-By: Mailman/MimeDel 2.1.8rc1
X-BeenThere: speakup@braille.uwo.ca
X-Mailman-Version: 2.1.8rc1
Precedence: list
Reply-To: "Speakup is a screen review system for Linux."
	<speakup@braille.uwo.ca>
List-Id: "Speakup is a screen review system for Linux."
	<speakup.braille.uwo.ca>
List-Unsubscribe: <http://speech.braille.uwo.ca/mailman/listinfo/speakup>,
	<mailto:speakup-request@braille.uwo.ca?subject=unsubscribe>
List-Archive: <http://speech.braille.uwo.ca/pipermail/speakup>
List-Post: <mailto:speakup@braille.uwo.ca>
List-Help: <mailto:speakup-request@braille.uwo.ca?subject=help>
List-Subscribe: <http://speech.braille.uwo.ca/mailman/listinfo/speakup>,
	<mailto:speakup-request@braille.uwo.ca?subject=subscribe>
X-List-Received-Date: Tue, 11 Jul 2006 21:05:01 -0000

Hello list,
I tried running endoshield, and got a ton of errors.
So, now I will try to do it manually. I'm going through a tutorial now, =
and I have a coupel questions.
I can do the following.
iptables -A INPUT -p tcp -dport 2200 -j queue
iptables -A INPUT -p tcp -sport 2200 -j queue
to allow for the traffic on port 2200 to go through. I think.
But, lets say I create a rule for each port. The ones I want to allow, =
and the ones I don't want to allow.
I think I can use a -s to make it only local if I want.
Then, how would I block the ports that I haven't created rules for?
next, if I set up the box as a DMZ, in front of the router, is there a =
way that I can make it manage all traffic coming in and out of the =
network? Just like the router would?
Thanks,
~~TheCreator~~
website:
http://tysplace.shaned.net
msn:
compgeek134@hotmail.com
aim:
st8amnd2005
skype:
st8amnd127
moo coder/wizard and administrator