[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Listening Ports

Philipp Schulte, 2001-Sep-10 02:45 +0200:
> On Mon, Sep 10, 2001 at 10:02:12AM +1000, Roger Keays wrote: 
> > You want to check out ipchains. It is a packet filter which you can use to
> > reject traffic based on protocol (tcp, udp, icmp), interface,
> > source/destination address and port numbers.
> Jeffs idea to control with interfaces a service binds to is much
> better than to let all services listen on all interfaces and restrict
> them with ipchains.
> Phil

I already use iptables, and can accomplish the blocking that way,
I just wanted to see if there was a way to keep the port from
binding to an interface to start with.  

So, I'll continue with iptables for now.



Jeff Coppock		Nortel Networks
Systems Engineer	http://nortelnetworks.com
Major Accts.		Santa Clara, CA

Reply to: