I don't have a firewall on that host because there's already a NAT router connecting the LAN to the Net.
I don't know your setup, but I'm pretty sure you can run the packet filter on your host anyway. You don't need to configure NAT to run your host firewall.
I'll just add the following to /etc/ssh/sshd_config, and restart the service: AllowHosts 192.168.0 82.x.x.x
BTW, is the SSHd that comes with the system good enough, or should I upgrade to what's in /usr/ports/security/ssh2?
For me base system ssh works like a sharm. IMO, you only want to "upgrade" if you need a specific feature that is not available on system SSH. Pedro _______________________________________________ email@example.com mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"