I need help for my iptables rules.
1) Do I need these rules if my laptop is not acting as a router ?
#flood
Code: Select all
sudo iptables -A FORWARD -p tcp --syn -m limit --limit 1/second -j ACCEPT
sudo iptables -A FORWARD -p udp -m limit --limit 1/second -j ACCEPT
sudo iptables -A FORWARD -p icmp --icmp-type echo-request -m limit --limit 1/second -j ACCEPT
Code: Select all
sudo iptables -A FORWARD -p tcp --tcp-flags SYN,ACK,FIN,RST RST -m limit –-limit 1/s -j ACCEPT
2) What exactly is the point of these rules ? All this is unclear to me.
My laptop is not acting as a router or a server. So do I need these rules?
# Multicast
Code: Select all
sudo iptables -A INPUT -m pkttype --pkt-type multicast -j ACCEPT
# Samba Traffic
Code: Select all
sudo iptables -t raw -A OUTPUT -p udp -m udp --dport 137 -j CT --helper netbios-ns
# Broadcast
Code: Select all
sudo iptables -A INPUT -m pkttype --pkt-type broadcast -j DROP
Thanks in advance