Subject: Re: port 113
From: W.D.McKinney (deem@wdm.com)
Date: Fri Jan 30 2004 - 10:31:42 AKST
On Fri, 2004-01-30 at 10:05, Greg Madden wrote:
> I got a new firewall, replaced my Icop box with a Netgear Fvs318. What
> this did was break my Debian mirror updates that were runing on a cron
> job. the update starts, runs for about an hour then looses the
> connection to the remote mirror.
>
> Doing some investigating I find that the Netgear box stealths all ports
> by default. In contrast the Ipcop box stealths 1-112, leaves port 113
> (Ident) as closed, stealths 114-1024 , leaves all the higher ports in a
> closed state. Not having any admin knowledge I am wondering if
> stealthing port 113 is not a good poicy, at least for the mirror I am
> trying to connect to.
I would take this on a case by case basis. If your mirror process fails
then the authentication process is hanging and you need to try something
different. You might want to read up on this :-D
See http://www.grc.com/port_113.htm
Have fun!
Dee
-- W.D.McKinney (Dee) Alaska Wireless Systems http://www.akwireless.net (907)349-4308 Office (907)349-2226 Fax--------- To unsubscribe, send email to <aklug-request@aklug.org> with 'unsubscribe' in the message body.
This archive was generated by hypermail 2a23 : Fri Jan 30 2004 - 10:20:27 AKST