pete wrote: > >> I see no solution but this: >> >> ACCEPT net:<IP B> fw udp - 161 > > Thanks, that works. We were doing that type of thing with ipfilter on > FreeBSD, but I was hoping that there was nifty way of doing that with the > connection tracking in netfilter/shorewall. > > However, if that's the only solution, at least that's something. > > I appreciate your patience and your help!
As Andrew says, you might be able to put together an action implemented with an extension script using recent match. See the article "Port Knocking and Other uses of 'Recent Match'" at http://www.shorewall.net/PortKnocking.html -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ [EMAIL PROTECTED] PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2005. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
