Results 1 to 5 of 5

Thread: Replacement firewall gui

  1. #1

    Question Replacement firewall gui

    Hi,

    The firewall interface which comes with Opensuse 11 isn't fully functional - i.e. doesn't appear to give the ability to stop the machine replying to icmp packets.

    What other interfaces can i use and are there any 'risks' in doing so?

    Thank you

  2. #2
    Join Date
    Jun 2008
    Location
    Podunk
    Posts
    26,100
    Blog Entries
    15

    Default Re: Replacement firewall gui

    Quote Originally Posted by yeleek
    Hi,

    The firewall interface which comes with Opensuse 11 isn't fully
    functional - i.e. doesn't appear to give the ability to stop the machine
    replying to icmp packets.

    What other interfaces can i use and are there any 'risks' in doing so?

    Thank you
    Hi
    iptables doesn't work?? Oh no!! {joking}

    Have a look at the iptables rules, at the moment it is set to accept.

    YaST-> System -> etc/sysconfig editor -> search icmp you will see a
    rule called;

    Code:
    FW_ALLOW_PING_FW
    Set to no, save and restart the firewall.....

    --
    Cheers Malcolm (Linux Counter #276890)
    openSUSE 11.0 x86 Kernel 2.6.25.11-0.1-default
    up 2:30, 2 users, load average: 0.39, 0.35, 0.25
    GPU GeForce 6600 TE/6200 TE - Driver Version: 173.14.12


  3. #3

    Default Re: Replacement firewall gui

    Hey,

    Thats great thanks


  4. #4

    Default Re: Replacement firewall gui

    Another q re firewalls i'm afraid....

    I'm using wireshark to watch a secondary pc when pinging my mainpc (opensuse). I can see the mainpc (opensuse) is not responding to pings, nor is it responding when using hping3 for various icmp packets.

    However.... nmap -sP opensuseip from my secondary pc to mainpc is getting a response. And according to wireshark its via arp.

    How can i stop this? I want a complete no response from my opensuse machine. All the ports are closed its literally just stopping it acknowledging its got an ip address.

    Thanks

  5. #5
    Join Date
    Jun 2008
    Location
    Podunk
    Posts
    26,100
    Blog Entries
    15

    Default Re: Replacement firewall gui

    Quote Originally Posted by yeleek
    Another q re firewalls i'm afraid....

    I'm using wireshark to watch a secondary pc when pinging my mainpc
    (opensuse). I can see the mainpc (opensuse) is not responding to pings,
    nor is it responding when using hping3 for various icmp packets.

    However.... nmap -sP opensuseip from my secondary pc to mainpc is
    getting a response. And according to wireshark its via arp.

    How can i stop this? I want a complete no response from my opensuse
    machine. All the ports are closed its literally just stopping it
    acknowledging its got an ip address.

    Thanks
    Hi
    Have a read here;
    Address
    Resolution Protocol


    Then have a google on "blocking ARP requests"

    --
    Cheers Malcolm (Linux Counter #276890)
    openSUSE 11.0 x86 Kernel 2.6.25.11-0.1-default
    up 1 day 0:04, 2 users, load average: 1.91, 0.76, 0.35
    GPU GeForce 6600 TE/6200 TE - Driver Version: 173.14.12


Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •