I would just slug to double check my attempt at secure remote action.
In sshd_config i added an additional port:
Port 22
Port xxxxxBecause i wish to able to login on the local network without specifying the other port. So the second port would be the remote port. Thus in /etc/shorewall/rules (yucky wrapping):
#ACTION SOURCE DEST PROTO DEST SOURCE ORIGINAL RATE USER
# PORT PORT(S) DEST LIMIT
ACCEPT net fw tcp xxxxx -
ACCEPT loc fw tcp 22 -
It works, a stamp of approval wouldn't be bad tho :)
-- Simon Males <[EMAIL PROTECTED]> No More AOL CDs Australia - www.anticd.org -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
