Date: Wed, 20 Aug 2008 07:38:55 -0700 From: Jeremy Chadwick <koitsu@FreeBSD.org> To: Leslie Jensen <leslie@eskk.nu> Cc: freebsd-pf@freebsd.org Subject: Re: port stealth mode? Message-ID: <20080820143855.GA40160@eos.sc1.parodius.com> In-Reply-To: <48AC266D.2030902@eskk.nu> References: <48AC266D.2030902@eskk.nu>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, Aug 20, 2008 at 04:13:01PM +0200, Leslie Jensen wrote: > I've done some testing with Steve Gibsons "Shields up" > https://www.grc.com/x/ne.dll?bh0bkyd2 > > These tests lists the ports as closed but visible. > > Instead the site suggest that one uses stealth so that the ports are not > visible from the Internet. > > Is there a way to achieve this with PF? The "block" directive, along with "set block-policy drop" should suffice for accomplishing this in pf. -- | Jeremy Chadwick jdc at parodius.com | | Parodius Networking http://www.parodius.com/ | | UNIX Systems Administrator Mountain View, CA, USA | | Making life hard for others since 1977. PGP: 4BD6C0CB |
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20080820143855.GA40160>