Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Chris Miller on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

How to disable a port on my system ?

Status
Not open for further replies.
Johnthom

Johnthom

Technical User
Aug 23, 2001
45
VN
Hi everybody,

Please tell me how to disable a port ( for example port TCP 447 ) on my computer. And tell me a software to scan all opened ports on my computer. Tel me ports I should open/close for security ( my computer is mail server only ).

Thanks in advance.

John Thom
 
Sort by date Sort by votes
Hi,

On Linux this is very easy using the firewalling/packet filtering utilities ipchains or iptables (the latter with effect from 2.4 series kernels only).

To scan yourself the best is nmap which can also be run from gui with nmap-front end. See --> for info and downloads. Some linux distros have rpms available as part of the standard distribution and you just have to install them. For redhat try these : &
To run the gui just open a console window, su to root, and do 'nmapfe &' . (If you don't run as root you can't do everything). Then just put your ip address and run a syn-stealth scan as a first try. Its best to do this from 'outside' really to see how your system looks to a potential cracker/hacker (sic). For info on ports an sploits see --> .

When you invoke ipchains/iptables you really have two choices. You can set the default to allow everything and then write rules to block specifics or (better) set the default to drop everything and write rules that specifically allow what is necessary. Its quite a big subject really and there are various tools that will generate ipchains/iptables rules for you via a gui. For example, redhat 7.x has a utility called 'lokkit' which generates a ipchains script. Most other up-to-date distros have similar facilities or you can download other packages. For ipchains see --> . For iptables see -->
A typical iptables rule for port 447 would look something like this :

iptables -A INPUT -i eth0 -s 0/0 --dport 447 -j DROP

(just an extract - not much use on its' own!)

Hope this helps
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

SamBones
  • Locked
  • Question
How Do I Start/Stop Systemd Services as a non-root User?
Replies
2
Views
723
gbaughma
gbaughma
kristiandg
  • Locked
  • Question
Linux, "port mirror" between two boxes...
Replies
0
Views
249
kristiandg
kristiandg
donald lepariku
  • Locked
  • Question
Error: 694, Severity: 24, State: 10 An attempt was made to read logical page '153', virtpage '616' f 1
Replies
3
Views
339
spamjim
spamjim
bhuv560
  • Locked
  • Question
Postfix Installation on EC2 AWS Linux
Replies
0
Views
159
bhuv560
bhuv560
gregor weertman
  • Locked
  • Question
set samba "template shell" dependent on group
Replies
0
Views
136
gregor weertman
gregor weertman

Part and Inventory Search

Sponsor

Back
Top