[lug] IPCHAINS again.

Atkinson, Chip CAtkinson at Circadence.com
Tue Oct 17 11:31:21 MDT 2000


How about if you set up an alias so that you have another IP address on the
same network connection?  Then you will have a temp. backdoor while you do
your work.

-----Original Message-----
From: John Starkey [mailto:jstarkey at advancecreations.com]
Sent: Monday, October 16, 2000 11:11 AM
To: lug at lug.boulder.co.us
Subject: [lug] IPCHAINS again.


I'm setting up a remote machine, so I don't wanna lock myself out, and as
many of you know I have really bad luck with ipchains.

ipchains -P input DENY
ipchains -P output DENY
ipchains -P forward DENY

ipchains -A input -p tcp -s xx.xx.xx.xx -d xx.xx.xx.xx 22 -j ACCEPT
ipchains -A output -p tcp -s xx.xx.xx.xx -d xx.xx.xx.xx 22 -j ACCEPT

This should allow me to SSH in while I config the rest of the rulesets,
correct?? 

Thanks,

John


_______________________________________________
Web Page:  http://lug.boulder.co.us
Mailing List: http://lists.lug.boulder.co.us/mailman/listinfo/lug




More information about the LUG mailing list