Benji Weber wrote: > On 5/10/07, Sorin Peste <[EMAIL PROTECTED]> wrote: >> Hi, >> >> I want to open a TCP port, but restrict access based on a list of source >> IP addresses. Can this be accomplished by using the YaST Firewall >> module? (I couldn't find anything for this). If not, what's the >> recommended way of doing this in 10.2, so that the next time I use YaST >> to open a port, my custom settings don't get wiped out? > > yast -> system -> /etc/sysconfig editor -> network -> firewall -> > susefirewall2 -> FW_SERVICES_ACCEPT_EXT > > It is in a space separated list of the following: > <network>,tcp,<destination portnumber>,<source port number>,[rate > limiting settings] > > So for example: > > 192.168.0.0/24,tcp,22 > > should allow any ssh connections from IPs in the 192.168.0.* range. > > _ > Benjamin Weber That worked great, thank you. -- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
