Skip to content
Snippets Groups Projects
Commit 137637e0 authored by Bob Mottram's avatar Bob Mottram
Browse files

portsentry configuration

parent 2758e5bc
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
Showing
with 18 additions and 0 deletions
beaglebone.txt
+ 18
0
View file @ 137637e0
......@@ -454,9 +454,27 @@ apt-get install portsentry
emacs /etc/portsentry/portsentry.conf
#+END_SRC
Uncomment the entry for *iptables support for Linux*
Set the following properties:
#+BEGIN_SRC: bash
TCP_PORTS="1,7,9,11,15,79,109,110,111,119,138,139,512,513,514,515,540,635,1080,1524,2000,2001,4000,4001,5742,6000,6001,6667,12345,12346,20034,27665,30303,32771,32772,32773,32774,31337,40421,40425,49724,54320"
UDP_PORTS="1,7,9,66,67,68,69,111,137,138,161,162,474,513,517,518,635,640,641,666,700,2049,31335,27444,34555,32770,32771,32772,32773,32774,31337,54321"
ADVANCED_EXCLUDE_TCP="113,139,70,80,443,143,6670,5060,5061,25,465,22,5222,5223,5269,5280,5281,8444"
ADVANCED_EXCLUDE_UDP="520,138,137,67,70,80,443,143,6670,5060,5061,25,465,22,5222,5223,5269,5280,5281,8444"
SCAN_TRIGGER="2"
BLOCK_UDP="2"
BLOCK_TCP="2"
#+END_SRC
Save and exit.
#+BEGIN_SRC: bash
service portsentry restart
emacs /tmp/firewall.sh
#+END_SRC
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment