On 5/10/07, Sorin Peste <[EMAIL PROTECTED]> wrote:
Hi,
I want to open a TCP port, but restrict access based on a list of source
IP addresses. Can this be accomplished by using the YaST Firewall
module? (I couldn't find anything for this). If not, what's the
recommended way of doing this in 10.2, so that the next time I use YaST
to open a port, my custom settings don't get wiped out?
yast -> system -> /etc/sysconfig editor -> network -> firewall ->
susefirewall2 -> FW_SERVICES_ACCEPT_EXT
It is in a space separated list of the following:
<network>,tcp,<destination portnumber>,<source port number>,[rate
limiting settings]
So for example:
192.168.0.0/24,tcp,22
should allow any ssh connections from IPs in the 192.168.0.* range.
_
Benjamin Weber
--
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
