IPSEC and other non tcp/udp/icmp blocking

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Hello Cyberdude,

On Saturday 12 October 2002 04:45, Mitesh P Choksi wrote:
> Dear All,
> How does netfilter work with other protocols apart tcp/udp/icmp?
> I am trying to either block or account IPSec traffic.
> Regards,
> Cyberdude Murli
> The Earth

to block ipsec (IIRC):
# iptables -A FORWARD -p 50 -j DROP
# iptables -A FORWARD -p 51 -j DROP
# iptables -A FORWARD -p tcp --dport 500 -j DROP

(to block ah&esp as well as the IKE daemon).

Have a nice day,

Fabrice.
--
Fabrice MARIE

"Silly hacker, root is for administrators"
       -Unknown
[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux