Eric, That's basically what I've done for now which is what I meant by disabled. But it's what I am trying to avoid if possible, mainly because I am paranoid. Richard
Richard, I'm not very familiar with tcp-wrapper rules, but you could try to remove the "ALL PARANOID" from /etc/hosts.deny. Eric Spakman > Hi, > I am very happy with the way my new bering uclibc 2.3 rc1 box is going. > Thank you all for your help to get it going. > I am still having a couple of minor problems - One with ipsec road > warrior, but I'll muck about with that and read some more docs before i > bother you all with that. The other is with tcp wrappers and external ssh > and www access. I am using knockd to open up the ssh and www ports and > also to dnat a couple of ports to internal servers. > > I all works perfectly with tcp wrappers disabled and access from the > local network works fine with wrappers enabled. But i can't get access from > the net to the firewall sshd and weblet with tcp wrappers on. i've tried > ssh: ALL and sshd: ALL and sh-httpd: ALL and www: ALL and > none of those seem to work. Are any of these correct and if so is there > something else that I would be missing. Regards > Richard Saunders
------------------------------------------------------- This SF.Net email is sponsored by: Power Architecture Resource Center: Free content, downloads, discussions, and more. http://solutions.newsforge.com/ibmarch.tmpl ------------------------------------------------------------------------ leaf-user mailing list: [email protected] https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
