On 2/5/19 1:29 PM, Brent Gordon wrote: > What is the best way to block most, but not all, incoming traffic? > There are four blocks of addresses I want to allow through for remote > administration. Other than traffic from those four blocks I want to > drop all other traffic. > > I am running Shorewall version 5.0.4 on a Ubuntu 16.04.5 LTS system. >
All of the sample configurations (http://www.shorewall.org/GettingStarted.html) block all traffic from the external (net) zone by default. So, if you start with one of those, you simply have to add entries in /etc/shorewall/rules for the incoming connections that you want to allow. -Tom -- Tom Eastep \ Q: What do you get when you cross a mobster with Shoreline, \ an international standard? Washington, USA \ A: Someone who makes you an offer you can't http://shorewall.org \ understand \_______________________________________________
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users