Well you could do it using ipchains rules. I have used the suse firewall only once but I remembr you can edit the firewall rules the it sets up and add your own ipchains rules to block certain ports. rules like ipchains -A input -p tcp -s 192.168.1.0/24 -d 0/0 23 -j DENY would deny your local network assuming it is on network 192.168.1.0 with subnet 255.255.255.0 access to port 23 which is the telnet port. You can also use port ranges like 20:23 to save some work. Read the script in /etc/rc.config.d for the firewall it should indicate in which file the actual ipchains rules are stored and that is where you should add your own. Or if you want to block total access to those ports you make the source 0/0 i.e ipchains -A input -p tcp -s 0/0 -d 0/0 23 -j DENY > hello everyone ! > i am using a linux router with masqued windows workstation an the same net. > also the SuSEfirewall is installed. > > now i realized that more and more windows programs use to "phone home", so i > decided to close all more or less useless ports from the inside. > > anyone who has info on this ? could not find anything in the suse > manual/database ! > > thanks in advance ! > > nme > > - > : send the line "unsubscribe linux-net" in > the body of a message to majordomo@vger.rutgers.edu > Noah ksemat@eahd.or.ug - : send the line "unsubscribe linux-net" in the body of a message to majordomo@vger.rutgers.edu
