This may sound stupid, but I'd like to lock down port 80 on one of my
installations.
Ive read the how-to several times over and the firewall how-to and I'm still
not sure to do it properly.
Can someone please help me out, here is the part of my rc.local file
(redhat).
Basically the Ip Masq works 100% and I have no problems with it, I just want
to lock port 80
because the company that I installed it for don't want their users to browse
the web.
==============================
# IP Masquerading Configuration Startup
echo "ip_masq 128.100.0.50"
echo "1" > /proc/sys/net/ipv4/ip_forward
/sbin/depmod -a
/sbin/modprobe ip_masq_ftp
/sbin/ipfwadm -F -p deny
/sbin/ipfwadm -F -a m -S128.100.0.50/16 -D0.0.0.0/0
/sbin/ipfwadm -F -P tcp -a reject -W eth0 -S 128.100.0.50/16 -D 0.0.0.0/0
80 -o
==============================
and here what i get when i execute the supposed status on what has been
implemented ??
[root@mail rc.d]# ipfwadm -l -F
IP firewall forward rules, default policy: deny
type prot source destination ports
acc/m all net.utoronto.ca/16 anywhere n/a
rej tcp net.utoronto.ca/16 anywhere any -> http
[root@mail rc.d]#
Secondly, (this is pushing it I know) is it possible to only let certain
users use port 80 ?? Just say I issue them with static IP's (128.100.0.x).
Im running DHCP on a NT machine but I can let some use static ones.
Any feedback to my questions will be greatly appreciated !
Thanks!
Stephen Mills.
[EMAIL PROTECTED]
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
For daily digest info, email [EMAIL PROTECTED]
