Hi I need some help in IP/Port blocking as below:- All machines with IP range 10.10.10.x should have access to Port 80 on (Machine 10.10.10.xx). and rest all should be blocked. Could someone suggest how to use hosts.deny/hosts.all for port blocking Many thanks in advance. Best Regards --N
Probably easier to do it with IPTables: iptables -A INPUT -s 10.10.10.0/24 -p tcp --destination-port 80 -j ACCEPT iptables -A INPUT -p tcp --destination-port 80 -j DROP -----Original Message----- From: wlug-bounces(a)list.waikato.ac.nz [mailto:wlug-bounces(a)list.waikato.ac.nz] On Behalf Of Narender Sent: Tuesday, 6 October 2009 4:17 PM To: Waikato Linux Users Group Subject: [wlug] IP range + port blocking Hi I need some help in IP/Port blocking as below:- All machines with IP range 10.10.10.x should have access to Port 80 on (Machine 10.10.10.xx). and rest all should be blocked. Could someone suggest how to use hosts.deny/hosts.all for port blocking Many thanks in advance. Best Regards --N _______________________________________________ wlug mailing list | wlug(a)list.waikato.ac.nz Unsubscribe: http://list.waikato.ac.nz/mailman/listinfo/wlug
Thanks a ton, really appricate your help Best regards --N On Tue, Oct 6, 2009 at 11:54 AM, Steven Lisson <stevel(a)dedicatedservers.net.au> wrote:
Probably easier to do it with IPTables:
iptables -A INPUT -s 10.10.10.0/24 -p tcp --destination-port 80 -j ACCEPT iptables -A INPUT -p tcp --destination-port 80 -j DROP
-----Original Message----- From: wlug-bounces(a)list.waikato.ac.nz [mailto:wlug-bounces(a)list.waikato.ac.nz] On Behalf Of Narender Sent: Tuesday, 6 October 2009 4:17 PM To: Waikato Linux Users Group Subject: [wlug] IP range + port blocking
Hi
I need some help in IP/Port blocking as below:-
All machines with IP range 10.10.10.x should have access to Port 80 on (Machine 10.10.10.xx). and rest all should be blocked.
Could someone suggest how to use hosts.deny/hosts.all for port blocking
Many thanks in advance.
Best Regards --N _______________________________________________ wlug mailing list | wlug(a)list.waikato.ac.nz Unsubscribe: http://list.waikato.ac.nz/mailman/listinfo/wlug _______________________________________________ wlug mailing list | wlug(a)list.waikato.ac.nz Unsubscribe: http://list.waikato.ac.nz/mailman/listinfo/wlug
On Tue, Oct 6, 2009 at 7:16 AM, Narender <narender.hooda(a)gmail.com> wrote:
Could someone suggest how to use hosts.deny/hosts.all for port blocking
in hosts.allow 80: 10.10.10.0/24 in hosts.deny 80: ALL See man hosts_allow(5) for more details. Using iptables as Steven suggests is also a good way to do this. -- Matt Brown matt(a)mattb.net.nz Mob +353 86 608 7117 www.mattb.net.nz
Thanks a million Matt, I am all set by IPtables now :) Hosts.allow is easy to implement. Best Regards N On Sun, Oct 11, 2009 at 4:59 PM, Matt Brown <matt(a)mattb.net.nz> wrote:
On Tue, Oct 6, 2009 at 7:16 AM, Narender <narender.hooda(a)gmail.com> wrote:
Could someone suggest how to use hosts.deny/hosts.all for port blocking
in hosts.allow 80: 10.10.10.0/24
in hosts.deny 80: ALL
See man hosts_allow(5) for more details.
Using iptables as Steven suggests is also a good way to do this.
-- Matt Brown matt(a)mattb.net.nz Mob +353 86 608 7117 www.mattb.net.nz _______________________________________________ wlug mailing list | wlug(a)list.waikato.ac.nz Unsubscribe: http://list.waikato.ac.nz/mailman/listinfo/wlug
participants (3)
-
Matt Brown -
Narender -
Steven Lisson