Re: iptables & tcp wrappers

From: Jorge Alfredo Garcia (frederix_at_gmail.com)
Date: 09/27/04

  • Next message: Erik Anderson: "RE: iptables & tcp wrappers"
    Date: Mon, 27 Sep 2004 14:10:25 -0300
    To: focus-linux@securityfocus.com
    
    

    hello.
    you can see the numbers of the different rules with the command:

    iptables -L --line-numbers

    You can accept a certain ip use ssh and then another rules that drops
    all others ips or u can change the policy of the INOMING chain and
    accept the valid ip with the rule:

    iptables -A INPUT -s X.X.X.X -p tcp --dport 22 -j ACCEPT

    I think this kind of blocking ips is better than host allow and host deny.
    This tutorial is exelent but is kind of long, u can search for
    specific stuff u will need:
    http://iptables-tutorial.frozentux.net/iptables-tutorial.html

    Good luck!


  • Next message: Erik Anderson: "RE: iptables & tcp wrappers"