You can also check out this handy dandy project... I have found this very useful for creating firewalls. Anyone with checkpoint FW-1 experience would most likely enjoy this. It's called Firewall Builder --> http://www.fwbuilder.org/ You can download/install it to work with ipchains, iptables, ipfw, and they even have a Cisco PIX module that you can get, but you have to pay for that. Paul C. > -----Original Message----- > From: redhat-list-bounces@xxxxxxxxxx [mailto:redhat-list- > bounces@xxxxxxxxxx] On Behalf Of James Cooley > Sent: Friday, March 11, 2005 2:22 PM > To: General Red Hat Linux discussion list > Subject: Re: nfsd/portmapper and iptables on Linux 4 > > Ben, > > No problem. O'Reilly makes a cheap pocket reference for iptables called > "Linux iptables Pocket reference" which can be had from bookstores for > about $10, or bookpool.com for around $6. It's fairly good at > explaining the syntax and getting you up to speed with creating rules. > > I still prefer the ipfw rule format in FreeBSD to the iptables in Linux, > but you have to use what you've got. The random port assignments throw > a lot of people for a loop, and usually the offenders are only RPC based > services. The nfs random ports drove me nuts for quite a awhile, and I > never found a solution to it until I just 'tried' putting the services > in /etc/services. > > In any case, I'm just glad I could be of some help. > > --James Cooley > > > Ben Ransom wrote: > > > Thanks again James. This works, but of course I feel I must be > > missing something wrt how to deal with random port assignment and > > iptables. So far I've gotten away with very only understanding of > > iptables syntax and rule making ...will read up and hope to get back > > to random ports eventually. > > -Ben > > > > -- > redhat-list mailing list > unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe > https://www.redhat.com/mailman/listinfo/redhat-list -- redhat-list mailing list unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe https://www.redhat.com/mailman/listinfo/redhat-list
