[Shorewall-users] UDP ports

Simon Turvey turveysp@ntlworld.com
Wed, 17 Apr 2002 17:03:56 +0100


Aha, my apologies.  Thanks for the quick response.

Any thoughts on the e-mail I accidentally sent to your personal address last
night regarding the display at startup of the fact that UDP 500, ESP, and AH
are permitted when tunnels are configured?  At the moment this is a bit
hidden behind-the-scenes.

Thanks again,
    Simon

----- Original Message -----
From: "Tom Eastep" <teastep@shorewall.net>
To: "Simon Turvey" <turveysp@ntlworld.com>
Cc: <shorewall-users@shorewall.net>
Sent: Wednesday, April 17, 2002 5:00 PM
Subject: Re: [Shorewall-users] UDP ports


> On Wed, 17 Apr 2002, Simon Turvey wrote:
>
> > A scan of my system from a friend's box has shown all my UDP ports to be
> > open.  Is this the default configuration for Shorewall and if it is,
why?
> >
>
> Read the documentation of nmap CAREFULLY. If nmap does not get a "port
> unreachable" icmp response, then it reports the port open -- in
> particular, if it gets NO REPONSE it reports the port as open.
>
> -Tom
> --
> Tom Eastep    \ Shorewall - iptables made easy
> AIM: tmeastep  \ http://www.shorewall.net
> ICQ: #60745924  \ teastep@shorewall.net
>
>