Hi,
I always prefer the status of "stealth" for my ports. Under WinXP, if the port is not being used by any application, it stays as stealth. If I run an application that I set to use my port, then the status will change to "open".
As I understand, that's how applications and ports are supposed to work. An app opens a port if it requires it. However, I'm trying the same thing for Ubuntu (Jaunty) but I can't achieve it.
Here's what I did:
** My GUFW port setting is like this: 12345 ALLOW 12345 (that is: To Action From) **
#1
- to achieve a "stealth" status for my ports, I use GUFW
- then I add the ports my apps particularly need, example: 12345
- I run the app but it can not get through. Additionally, if the port is detected externally, it still stays as "stealth". Should be "open" since the app using that port is running.
#2
- Now if I disable GUFW, "non-standard" (if that's the proper term to use) ports now gets the status "closed" if detected externally.
- if I run the app using port 12345 (again as an example), the application can get through fine. Then if the said port is detected externally, it shows as "open".
#3
Now if I change my GUFW setting to: 12345 ALLOW Anywhere (that's: To Action From), the said port will "open" if there's an app using it, otherwise it will be "closed". Again, not the result I am looking for which is "stealth".
So my question then, is there a way to achieve "stealth" using GUFW/UFW and still allowing the applications to open ports if they're using it?
Or is this a bug?
Or should I do it at the iptables level and uninstall GUFW?
Thanks in advance!!
Bookmarks