[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-security] Ipchains

Subject: [cobalt-security] Ipchains
From: "Jon" <jjma100@xxxxxxxxxxx>
Date: Thu, 12 Feb 2004 12:30:57 -0000
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

Hello

I'm trying to tighten my ipchains rules but not having too much
success. I am running the administration panel and ssh in the
firewall as denied for everyone except my static IP address which
has unlimited access. However I would like to restrict this
further and give the static address access to only ssh,admin
panel. This is what I have (ip changed)

$IPCHAINS -A input -p tcp -s ipaddress/255.255.255.248 -d
$OUTERNET 444 -i $OUTERIF -j ACCEPT -l

$IPCHAINS -A input -p tcp -s ipaddress/255.255.255.248 -d
$OUTERNET 81 -i $OUTERIF -j ACCEPT -l

$IPCHAINS -A input -p tcp -s $REMOTENET -d
ipaddress/255.255.255.248 90 -j ACCEPT -l

Any help is appreciated.

Jon

Prev by Date: Re: [cobalt-security] cgiwrap
Next by Date: [cobalt-security] admin interface digital certificate expired
Previous by thread: Re: [cobalt-security] IPChains
Next by thread: [cobalt-security] PortSentry 2.0 Beta expected to be released later this week

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index