[lug] IPCHAINS again.
John Starkey
jstarkey at advancecreations.com
Mon Oct 16 11:35:24 MDT 2000
You are the man. Thanks.
On Tue, 17 Oct 2000, Atkinson, Chip wrote:
> How about if you set up an alias so that you have another IP address on the
> same network connection? Then you will have a temp. backdoor while you do
> your work.
>
> -----Original Message-----
> From: John Starkey [mailto:jstarkey at advancecreations.com]
> Sent: Monday, October 16, 2000 11:11 AM
> To: lug at lug.boulder.co.us
> Subject: [lug] IPCHAINS again.
>
>
> I'm setting up a remote machine, so I don't wanna lock myself out, and as
> many of you know I have really bad luck with ipchains.
>
> ipchains -P input DENY
> ipchains -P output DENY
> ipchains -P forward DENY
>
> ipchains -A input -p tcp -s xx.xx.xx.xx -d xx.xx.xx.xx 22 -j ACCEPT
> ipchains -A output -p tcp -s xx.xx.xx.xx -d xx.xx.xx.xx 22 -j ACCEPT
>
> This should allow me to SSH in while I config the rest of the rulesets,
> correct??
>
> Thanks,
>
> John
>
>
> _______________________________________________
> Web Page: http://lug.boulder.co.us
> Mailing List: http://lists.lug.boulder.co.us/mailman/listinfo/lug
>
> _______________________________________________
> Web Page: http://lug.boulder.co.us
> Mailing List: http://lists.lug.boulder.co.us/mailman/listinfo/lug
>
More information about the LUG
mailing list