2000-09-27-11:48:52 Sanjeev Jha:
> Port forwarding question.
> I want to forward port 873 to say 5555 and I want rsync-users to
> use this port(5555) not 873. Now, how can I prevent users to
> connect at port 873 directly ?
That's a packet filtering question, not an rsync question;
everything in the whole neighborhood of port forwarding and access
control lies outside rsync's baliwick.
You need to decide who can and who cannot access that port; the
easiest distinction is to make 873 accessible from localhost only.
So what platform are you running on? On linux with ipchains the rule
you're looking for could be written
ipchains -A input -i !lo -d 0/0 873 -j DENY
I think. Lots of other ways it could be written.
On other OSes running Darren Reed's IP Filter, I believe the rule
you're looking for might look something like
block in quick on hme0 to any port = 873
but I don't work with IP Filter as much.
-Bennett
PGP signature
