Re: PortSentry and UFW
Originally Posted by
ACagliano
PortSentry is port-scan detection daemon that, when it detects a port scan, blocks the scan, reverse DNS's the IP address of the scanning host, and then should pass a rule to the firewall. This command follows the exact same structure to pass a rule to your firewall on the command line, as here:
KILL_ROUTE= " insert rule to pass to firewall "
So the text in those quotes is the command as you would pass it on the command line. I have PortSentry up and running perfectly fine. I'm just curious what to put in those quotes.
Does your Ubuntu machine have a WAN IP Address ? because if not then it wont get port scanned anyways, your router will which most deny portscans anyway.
Or are you worried about people on your LAN scanning your ports ?
And as stated UFW is not a firewall it is merely a interface to the Linux kernel firewall which is Netfilter/IPTables
Backtrack - Giving machine guns to monkeys since 2006
Kali-Linux - Adding a grenade launcher to the machine guns since 2013
Bookmarks