What does this patch do?
I read through the features page and didn't see much on iptables and stealth module.
question on Iptables 1.2.8 stealth module patch
4 posts
• Page 1 of 1
question on Iptables 1.2.8 stealth module patch
by syn » Sun Apr 04, 2004 12:38 am
- syn
- Posts: 1
- Joined: Sun Apr 04, 2004 12:18 am
by argan0n » Mon Apr 05, 2004 4:42 pm
Taking a very quick look at the sources it seems to register a new 'stealth' match into the userland iptables bin. This is a hook to NETFILTER kernel code in "net/ipv4/netfilter/ipt_stealth.c" that looks as if it silently passes ipv4 tcp/udp packets on the INPUT chain.
Dunno if this is being used by default for anything, I just looked around really quick.
Dunno if this is being used by default for anything, I just looked around really quick.
- argan0n
- Posts: 4
- Joined: Fri Mar 12, 2004 12:21 am
by pengu » Thu Jun 02, 2005 3:47 am
spender wrote:it matches packets coming to unserved tcp and udp ports.
example usage:
iptables -A INPUT -p tcp -m stealth -j DROP
iptables -A INPUT -p udp -m stealth -j DROP
-Brad
Hm.
2.6.11 --> work
2.4.30 --> does not
why?
- Code: Select all
iptables -A INPUT -p tcp -m stealth -j DROP
iptables: Invalid argument
iptables -A INPUT -p udp -m stealth -j DROP
iptables: Invalid argument
dmesg
- Code: Select all
stealth: Only works on TCP and UDP for the INPUT chain.
stealth: Only works on TCP and UDP for the INPUT chain.
both kernels are patched with grsecurity, iptables 1.2.11 patched with grsecurity patch
any ideas?
- pengu
- Posts: 1
- Joined: Thu Jun 02, 2005 3:41 am
4 posts
• Page 1 of 1