Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Question about blocking incomming traffic
Special Forums IP Networking Question about blocking incomming traffic Post 302859773 by LMHmedchem on Thursday 3rd of October 2013 07:34:50 PM
Old 10-03-2013
Question about blocking incomming traffic
Hello,

Like many others, I have continued to get attempts to connect to my local net router from the Asia Pacific Network Information Centre and from RIPE Network Coordination Centre, Amsterdam. I would say that 90% of attempted connections come from these two locations. The originating IP address is usually not registered in ARIN, so there is no specific IP range I can block. It is probably pointless to block individual IP addresses, so I have been thinking about other methods.

I began wondering why I should allow any inbound connections, meaning connection requests that originate off of my local net. After thinking about this, I realize that I don't fully understand these protocols as well as I should. Can someone explain whether or not I should block all incoming connections (I am not running any kind of service that would need incoming connections, ftp, sshd, etc). If I can't block all of them, which ones should I continue to allow? What would such a firewall rule look like, etc?

Thanks for any assistance that you can provide.

LMHmedchem
 

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

Incomming EmailAttachments

Hello, I have a requirement to accept incoming email attachements on my server to be saved off and processed into a database. I can find lots of information on sending attachments but nothing about handling incomming attachments. I need to be able to test for an attachment, ensure it's ascii and... (1 Reply)
Discussion started by: grhodes
1 Replies

2. IP Networking

blocking DHCP

I've got a legit DHCP server on my network. I've got a 3550 as my VTP server providing 4 vlans to 4 2950 switches. If somebody were to plug into one of those vlans with a DHCP server configured then it would throw off my whole network. How could i block the DHCP server that could plug into the... (2 Replies)
Discussion started by: byblyk
2 Replies

3. Linux

how to configure Linux for incomming connections

I have two computers running red hat, but when i use telnet command in a shell from one to another, it works. but from the other , it does not, it said: refused. i sent the security for incoming connecting, but it still not work . anyone have experience ? thanks vh (1 Reply)
Discussion started by: new23
1 Replies

4. IP Networking

Mac OS X IP traffic shaping question

Not sure if this considered traffic shaping or not, so I'll appreciate the enlightenment... Setup- Mac Pro, Mac OS X 10.5.6, Crashplan Pro Backup server. the Mac Pro has 2 E-net ports, en0, en1. Both E-net ports are connected to the same network, different IP's. Problem- We are planning to... (1 Reply)
Discussion started by: pbenware
1 Replies

5. UNIX for Dummies Questions & Answers

NIC card monitoring traffic question

Folks; I have 2 NIC cards on my SUSE Linux server. One of them was reporting receive errors for a while now it's OK, but i'd like to monitor it. Is there any command i can run to tell me the usage in the past or give me a history of traffic and the speed that going on this specific card? I... (1 Reply)
Discussion started by: Katkota
1 Replies

6. UNIX for Advanced & Expert Users

ps blocking

Hi Folks I have been debugging a script that is called every thirty seconds. Basically it is doing a ps, well two actually, one to file (read by the getline below) and the other into a pipe. The one into the pipe is: - V_SYSVPS=/usr/sysv/bin/ps $V_SYSVPS -p$PIDLIST -o$PSARGS... (0 Replies)
Discussion started by: steadyonabix
0 Replies

7. UNIX for Dummies Questions & Answers

Blocking signals

I know how to add signal to a set. But what if I want to add 2 or 3 signals to the set. I know I can use sigaddset (&set,SIGBUS)....but what if I want to add SIGBUS and SIGALRM at once. Do i have to do it like this.. sigaddset (&set,SIGBUS); sigaddset (&set,SIGALRM); Is there another way to... (0 Replies)
Discussion started by: joker40
0 Replies

8. Solaris

Solaris Question - How to find outgoing traffic on UDP ports

Hello All, I am trying find a command that would show me the stats of outgoing traffic on UPD ports on a Solaris 10 box. I would appreciate if anybody could help me out on this. Thank you much!!! Best Regards Sudharma. (7 Replies)
Discussion started by: sudharma
7 Replies

9. IP Networking

blocking traffic to destination network by port

I am trying to block ALL traffic except when from ports 9100,22,23 to destination network 192.0.0.0 (my WAN): 2 networks 192.0.3.0 with static route to 192.0.0.0 Shouldn't this work?: iptables -A INPUT -p tcp -d 192.0.0.0/24 --dport 22 -j ACCEPT iptables -A INPUT -p tcp -d 192.0.0.0/24... (3 Replies)
Discussion started by: herot
3 Replies

10. Programming

Which are blocking and non-blocking api's in sockets in C ?

among the below socket programming api's, please let me know which are blocking and non-blocking. socket accept bind listen write read close (2 Replies)
Discussion started by: VSSajjan
2 Replies

LEARN ABOUT DEBIAN

vanessa_socket_pipe

VANESSA_SOCKET_PIPE(1)					      General Commands Manual					    VANESSA_SOCKET_PIPE(1)

NAME

       vanessa_socket_pipe - Trivial TCP/IP pipe based on libvanessa_socket

SYNOPSIS

       vanessa_socket_pipe [options]

DESCRIPTION

       A  TCP/IP  pipe	is a user space programme that listens for TCP/IP connections on port on the local host and when a client connects makes a
       connection to a TCP port, possibly on another host. Once both connections are established data sent on one connection  is  relayed  to  the
       other, hence forming a bi-directional pipe.

       Uses include enabling connections to specific ports on hosts behind a packet filter.

       This code is intended primarily as an example of how many of the features of libvanessa_socket work.

OPTIONS

       -c|--connection_limit:
	      Maximum  number  of  connections	to accept simultaneously. A value of zero sets no limit on the number of simultaneous connections.
	      (default 0)

       -d|--debug:
	      Turn on verbose debuging to stderr.

       -h|--help:
	      Display this message.

       -L|--listen_port:
	      Port to listen on. (mandatory)

       -l|--listen_host:
	      Address to listen on. May be a hostname or an IP address.  If not defined then listen on all local addresses.

       -n|--no_lookup:
	      Turn off lookup of hostnames and portnames. That is, hosts must be given as IP addresses and ports must be given as numbers.

       -O|--outgoing_port:
	      Define a port to connect to. If not specified -l|--listen_port will be used.

       -o|--outgoing_host:
	      Define host to connect to.  May be a hostname or an IP address. (mandatory)

       -q|--quiet:
	      Only log errors. Overriden by -d|--debug.

       -t|--timeout:
	      Idle timeout in seconds.	Value of zero sets infinite timeout.  (default 1800)

       Notes: Default value for binary flags is off.
	      -L|--listen_port and -o|--outgoing_host must be defined.

AUTHOR

       Simon Horman <horms@verge.net.au>

								12th February 2001					    VANESSA_SOCKET_PIPE(1)
All times are GMT -4. The time now is 01:04 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy