[Cialug] Procmail / Sendmail config pbm
Tim Perdue
tim09 at perdue.net
Tue Apr 5 15:55:26 CDT 2011
On 4/5/2011 3:30 PM, albus wrote:
> If all you want is ssh allowed from the one IP you could try this.
>
> A RH-Firewall-1-INPUT -i eth0 -p tcp -s 67.41.107.185 --dport 22 -j ACCEPT
>
> A RH-Firewall-1-INPUT -i eth0 -p tcp -s 0/0 --dport 22 -j DROP
>
> Second line to force any and all traffic to DROP.
>
> Do you have more than on NIC in this machine.? If you have just one you
> could probably use
>
> A RH-Firewall-1-INPUT -p tcp -s 67.41.107.185 --dport 22 -j ACCEPT
This solved the problem. It appears maybe the latest update breaks this
old hack syntax I've used:
>> -A RH-Firewall-1-INPUT -i eth0 -p tcp --dport 22 -m iprange --src-range
>> 67.41.107.185-67.41.107.185 -j ACCEPT
>> COMMIT
Using -s for a single IP instead of the iprange that I've always used
appears to work fine.
Thanks!
More information about the Cialug
mailing list