But I think some ports should be left open (http,smtp,pop etc.) to use my
computer for internet. I get my IP dynamically, so I don't know it at boot
time. Can I activate the filter after getting my IP from the ISP with the
local IP ? I think, I' ll just try it and hope it will work. It's a little
bit different to secure the machine without using a router. Maybe I will get
an old 486 and let it do the work.
> u could use ipchains to setup firewalls in your computer.
> if u wanted to block all incoming tcp connections u could give
> # ipchains -I input -p tcp -y -s 0.0.0.0/0 -d <your ip addr>/<subnet
> mask> -j DENY
> so it doesnt matter from which interface the request originated , it will
> the best place is "man ipchains"
> > Hello,
> > after reading some articles to the theme above, I have the following
> > problem: I don't want to use my computer as router but I want to have
> > kind of firewall for some more security. How do I configure iptables to
> > filter anything beetween ppp0 and ?. I don't think it is eth0, because
> > only for the connection between dsl-modem and pc. Is it the loopback
> > ? How can activate filtering for the loopback-device ?
> > Thanks in advance
> > Marco Lehmann
> > P.S. Sorry for the english but I'm coming from germany