James Colby wrote: > currently forwarding all ssh traffic to my gentoo box. What I would > like to do is set up iptables to only allow ssh logins from a small > number of internet hosts,
iptables -A INPUT -s ip-address-of-know-host --dport 22 -j ACCEPT > and to reject and log all other ssh > attempts. iptables -A INPUT --dport 22 -j LOG iptables -A INPUT --dport 22 -j REJECT Regards, Norberto
pgp1bYpX8fXSL.pgp
Description: PGP signature
