controlling access to services
Karl
kamping_kaiser at internode.on.net
Sun Oct 1 08:45:30 CST 2006
On Sun, 2006-10-01 at 11:49 +0930, Ben Petering wrote:
> Karl Goetz wrote:
> > hi all
> > I'm hoping to control access to services running on a server. Although
> > i hear its not particularly useful, i white listed hosts in
> > hosts.allow, and added "all: All" to hosts.deny to block anything else.
> > I want the hosts 1, and 10-50 to be able to connect to ssh and tftp,
> > and all hosts on the network to connect to dhcp. I'v been looking at
> > [1], but i cant seem to extract the info i need to get iptables to
> > allow ranges of hosts.
> > Any clues?
> >
> > [1] http://www.debian-administration.org/articles/73
> > kk
> >
> Hi Karl :)
>
> You can use iptables' iprange module to accomplish this.
>
> I think you want something like:
>
> # --- cut here ---
Thanks mate, i'll put it on ice until i work out whats stopping my
clients logging in - less 'features' in the way the better at this
stage ;)
kk
>
> # --- cut here ---
>
>
> I would have just gone and fixed this myself, but I'll post it for the
> benefit of the list. :)
>
> Caveat emptor: I am no iptables guru, so if I've made a mistake, or
> there is a better way to do this, feel free to clobber me with a 2-by-4.
> (Or perhaps email the list, and let everyone know! Yeah. I like that one
> better. Easier on the old cranium, too.)
>
> --Ben
--
Karl <kamping_kaiser at internode.on.net>
More information about the linuxsa
mailing list