RE: HTTP Server Filtering

William Behrens (wbehrens@feist.com)
Thu, 24 Apr 1997 11:42:41 -0500

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Marty Likier: "Re: PM3 E1 interface and R2 signalling - ????"
Previous message: Sherwood Pekelo: "Re: Ascend MAX4048 and MAX4060, What do they cost? (fwd)"
Next in thread: Sherwood Pekelo: "was Re: pm3 modem commands now FAQ"

Try this;

permit 0.0.0.0/0 xxx.xxx.xxx.x/24 tcp estab **where xxx.xxx.xxx.x/24 =
is the subnet you wish to filter**
permit 0.0.0.0/0 xxx.xxx.xxx.x/24 udp **permit udp for dns and such**
permit 0.0.0.0/0 xxx.xxx.xxx.x/24 icmp **permit icmp for ping and =
errors ect. ect.**
deny log **denys everything else and logs to syslog**

This will only allow connections for TCP to be made when they originate =
from the host, but permit udp and icmp. This would not allow someone to =
make a connection to a host unless the host initiated the request.

William Behrens
Feist Systems / www.feist.com
wbehrens@feist.com

Next message: Marty Likier: "Re: PM3 E1 interface and R2 signalling - ????"
Previous message: Sherwood Pekelo: "Re: Ascend MAX4048 and MAX4060, What do they cost? (fwd)"
Next in thread: Sherwood Pekelo: "was Re: pm3 modem commands now FAQ"