Should all incoming ports that relate to a service such as SSH, FTP use -m state --state NEW? I have never used this with iptables; but I remember using it with ipfilter. What are the security implications (if any) of not using -m state --state NEW? -----Original Message----- From: netfilter-admin@xxxxxxxxxxxxxxxxxxx [mailto:netfilter-admin@xxxxxxxxxxxxxxxxxxx] On Behalf Of Koyama Mituru Sent: Wednesday, July 14, 2004 10:26 AM To: netfilter@xxxxxxxxxxxxxxxxxxx Subject: Re: ssh From: "IT Clown" <iptables@xxxxxxxxxxxxx> Subject: ssh Date: Wed, 14 Jul 2004 16:15:22 +0200 > How do i allow ssh in from the internet, thanks? iptables -A INPUT -p tcp --dport 22 -m state --state NEW -j ACCEPT -- Koyama Mituru netfilter@xxxxxxxxxxxxx
