Re: Listening Ports
Philipp Schulte, 2001-Sep-10 02:45 +0200:
> On Mon, Sep 10, 2001 at 10:02:12AM +1000, Roger Keays wrote:
> > You want to check out ipchains. It is a packet filter which you can use to
> > reject traffic based on protocol (tcp, udp, icmp), interface,
> > source/destination address and port numbers.
> Jeffs idea to control with interfaces a service binds to is much
> better than to let all services listen on all interfaces and restrict
> them with ipchains.
I already use iptables, and can accomplish the blocking that way,
I just wanted to see if there was a way to keep the port from
binding to an interface to start with.
So, I'll continue with iptables for now.
Jeff Coppock Nortel Networks
Systems Engineer http://nortelnetworks.com
Major Accts. Santa Clara, CA