Re: Filter to block TCP port 139...

HAL 9000 #3 (gryphon@server.livingston.com)
Tue, 13 May 1997 16:56:43 -0700 (PDT)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Jon Lewis: "Re: Filter to block TCP port 139..."
Previous message: Tom Mastre: "Re: PM3 and routing? (fwd)"
In reply to: Jacob Suter: "Re: Filter to block TCP port 139..."
Next in thread: Tom Mastre: "Re: PM3 and routing? (fwd)"

>
> you need to set a general permission of "allow everything" first.. I think
> it defaults to all denyed except...
>

Danger! Danger, Will Robinson!

If you're going to set a general permit, set it AFTER your explicit
denies. Filter rules are parsed in vertical order and a packet is
passed or discarded according to the FIRST RULE that the packet fits.

> I was trying this: deny tcp src eq 139
>
> It's probably horribly wrong, I know...

Actually, it's fine, you're just missing a blanket permit afterward.

--G.

-- 
'Twas brillig, and the slithy toves  |  Benjamin D. Hutchins, texaport minion
Did gyre and gimble in the wabe:     |  Livingston Enterprises, Inc.
All mimsy were the borogoves,        |  BellNet 800-458-9966 FAX 510-737-2110
And the mome raths outgrabe.   -><-  |  http://www.livingston.com/      S.I.G.

Next message: Jon Lewis: "Re: Filter to block TCP port 139..."
Previous message: Tom Mastre: "Re: PM3 and routing? (fwd)"
In reply to: Jacob Suter: "Re: Filter to block TCP port 139..."
Next in thread: Tom Mastre: "Re: PM3 and routing? (fwd)"