portsentry configuration

beaglebone.txt

@@ -454,9 +454,27 @@ apt-get install portsentry
 emacs /etc/portsentry/portsentry.conf
 #+END_SRC
 
+Uncomment the entry for *iptables support for Linux*
+
+Set the following properties:
+
+#+BEGIN_SRC: bash
+TCP_PORTS="1,7,9,11,15,79,109,110,111,119,138,139,512,513,514,515,540,635,1080,1524,2000,2001,4000,4001,5742,6000,6001,6667,12345,12346,20034,27665,30303,32771,32772,32773,32774,31337,40421,40425,49724,54320"
+UDP_PORTS="1,7,9,66,67,68,69,111,137,138,161,162,474,513,517,518,635,640,641,666,700,2049,31335,27444,34555,32770,32771,32772,32773,32774,31337,54321"
+
+ADVANCED_EXCLUDE_TCP="113,139,70,80,443,143,6670,5060,5061,25,465,22,5222,5223,5269,5280,5281,8444"
+ADVANCED_EXCLUDE_UDP="520,138,137,67,70,80,443,143,6670,5060,5061,25,465,22,5222,5223,5269,5280,5281,8444"
+
+SCAN_TRIGGER="2"
+
+BLOCK_UDP="2"
+BLOCK_TCP="2"
+#+END_SRC
+
 Save and exit.
 
 #+BEGIN_SRC: bash
+service portsentry restart
 emacs /tmp/firewall.sh
 #+END_SRC