[lug] IPCHAINS again.

John Starkey jstarkey at advancecreations.com
Mon Oct 16 11:57:02 MDT 2000


I bet that was what's been screwing me up all along.

Will:

ipchains -P input xx.xx.xx.xx DENY

restrict things to one IP@??

> The output rule is wrong...
> 
> you have:
> 
> ipchains -A output -p tcp -s xx.xx.xx.xx -d xx.xx.xx.xx 22 -j ACCEPT
> 
> What you want is:
> 
> ipchains -A output -p tcp -s xx.xx.xx.xx 22 -d xx.xx.xx.xx -j ACCEPT
> 
> ie, for the output rule, the source will be the local machine's IP
> port 22 (ssh) and going to your machine (any port)
> 
> John> Thanks,
> John> John
> 
> kevin
> -- 
> Kevin Fenzi
> MTS, tummy.com, ltd.
> http://www.tummy.com/  KRUD - Kevin's Red Hat Uber Distribution
> 
> _______________________________________________
> Web Page:  http://lug.boulder.co.us
> Mailing List: http://lists.lug.boulder.co.us/mailman/listinfo/lug
> 





More information about the LUG mailing list