So I just ran a port scan at grc.com and received the news that SMTP and IDENT are not stealthed, but merely closed. As they serve me no purpose, I want to stealth them.
After searching for a good hour or two I've come to the brilliant conclusion that I have to ask for help.
I understand that I need to add something along these lines to iptables:
-A INPUT -p all --dport 25 -j DROP
-A INPUT -p all --dport 113 -j DROP
I'm using the Firewall Configuration GUI.
System -> Administration -> Firewall -> Custom Rules -> Add
Now my questions:
After searching for a good hour or two I've come to the brilliant conclusion that I have to ask for help.
I understand that I need to add something along these lines to iptables:
-A INPUT -p all --dport 25 -j DROP
-A INPUT -p all --dport 113 -j DROP
I'm using the Firewall Configuration GUI.
System -> Administration -> Firewall -> Custom Rules -> Add
Now my questions:
- Do I add a file for both ipv4 and ipv6?
- Which Table? Mangle, nat or default (filter)?
- And what exactly should the file that I add contain? I couldn't find any clear information on the "iptables-save format".