[Firehol-support] Dropping localhost src packets.
Francis Brosnan Blázquez
francis at aspl.es
Thu Jan 22 10:28:30 GMT 2004
Hi.
We are recieving ip spoofed packages with 127.0.0.1 as ip source. So, we
have added the following line before any interface definition to drop
all incoming traffic from localhost.
blacklist="localhost"
interface any BadTraf src "${blacklist}"
But, after start firehol again, I still able to do a telnet localhost
22.
What am I doing wrong?. How could I drop all traffic from localhost ?
Thanks. All help is appreciated.
Cheers.
--
Francis Brosnan Blázquez <francis at aspl.es>
Advanced Software Production Line, S.L.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: Esta parte del mensaje está firmada digitalmente
URL: <http://lists.firehol.org/pipermail/firehol-support/attachments/20040122/d5f9f00c/attachment.sig>
More information about the Firehol-support
mailing list