TCLUG Archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [TCLUG:7419] firewall configuration
Ben Luey wrote:
> Question -- which side must these ports me open? I'm assuming that they
> must be open on the intranet side for incomming requests? Because my
> firewall blocks everything but ssh and smtp from the intranet and ip_masq
> works fine. But come to think of it the clients aren't connecting to those
> high ports. Could it be the loopback device or something strange that
> needs those high ports?
>
> Confused,
>
> Ben
>
That's a good question. I will test it out tonight and see if I can
block pots 61000-65000 and see if everything still works. When I did a
tcpdump yesterday I never saw anything go out on any port > 61000. I'm
not even sure where those high-port packets would be going or coming
from. Anyone?
Clay
--
Clay Fandre
cfandre@maddog.mn-linux.org
Twin Cities Linux Users Group
http://www.mn-linux.org