Re: telnet outside

From: L Ekman (emil71se@yahoo.com)
Date: 04/12/03


From: "L Ekman" <emil71se@yahoo.com>
Date: Sat, 12 Apr 2003 15:20:30 GMT

sinapsi <info@zam.it> wrote:
> I would like that users could telnet only to localhost (like telnet to their
> eggdrop) but never telnet outside.
> How can I set this?

As last rule;
-A INPUT -m limit --limit 12/minute --limit-burst 20 -j LOG

will log packets that drop through to the default policy.
The "limit" stuff is to prevent the logs from overflow on
a DoS attack or similar.

/L Ekman