free
/
freedombone
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
Browse Source

Don't accept RELATED packets

Bob Mottram 9 years ago
parent
4f4354ba19
commit
e830037a9c
No account linked to committer's email
1 changed files with 1 additions and 1 deletions
Unified View Show Diff Stats
  1. 1
    1
      src/freedombone

+ 1
- 1
src/freedombone View File

4109 
 	iptables -P INPUT DROP
 4109 
 	iptables -P INPUT DROP
4110 
 	ip6tables -P INPUT DROP
 4110 
 	ip6tables -P INPUT DROP
4111 
 	iptables -A INPUT -i lo -j ACCEPT
 4111 
 	iptables -A INPUT -i lo -j ACCEPT
4112 
-	iptables -A INPUT -m conntrack --ctstate ESTABLISHED,RELATED -j ACCEPT
4112 
+	iptables -A INPUT -m conntrack --ctstate ESTABLISHED -j ACCEPT
4113
4113
4114 
 	# Make sure incoming tcp connections are SYN packets
 4114 
 	# Make sure incoming tcp connections are SYN packets
4115 
 	iptables -A INPUT -p tcp ! --syn -m state --state NEW -j DROP
 4115 
 	iptables -A INPUT -p tcp ! --syn -m state --state NEW -j DROP