Re: routing help on dual homed box

To: debian-user@lists.debian.org
Subject: Re: routing help on dual homed box
From: Willi Dyck <wdyck@gmx.net>
Date: Tue, 8 Jan 2002 01:56:41 +0100
Message-id: <[🔎] 20020108005641.GA633@tekilla.homeip.net>
In-reply-to: <[🔎] 20020107204938.XXVD25038.femail41.sdc1.sfba.home.com@there>
References: <[🔎] 20020105074733.B649@typhoon.sdsu.edu> <[🔎] 20020107192108.PEAE14077.femail22.sdc1.sfba.home.com@there> <[🔎] 20020107192248.GA3759@tekilla.homeip.net> <[🔎] 20020107204938.XXVD25038.femail41.sdc1.sfba.home.com@there>

On Mon, Jan 07, 2002 at 02:49:16PM -0600, Ron Johnson did this all over the keyboard:
> > why do you care about your ip address?
> >
> > iface=<your device>
> >
> > ifconfig ${iface} | grep 'inet'  | cut -d: -f2 | cut -d " " -f1
> 
> So, to block port 1524, I can say 
>   ipchains -A input -p tcp -s 0/0 1524 -j DENY -l -i $iface
> instead of
>   ipchains -A input -p tcp -s 0/0 -d $out_ip/255.255.255.0 \

no, sorry, it was my mistake.

ip=$(ifconfig ${iface} | grep 'inet'  | cut -d: -f2 | cut -d " " -f1)

this command should also be put into a variable. then you would use
something like this:

'ipchains -A input -p tcp -s 0/0 1524 -j DENY -l -i $ip'

but your example also works, anyways. i prefer it this way :).
have fun,
Willi

-- 
Willi Dyck:       System Engineer
wdyck@gmx.net     http://www.willos.de.vu/
flateric          Geek by nature
System:           Debian GNU/Linux 2.2r3 woody

Reply to:

References:
- routing help on dual homed box
  - From: Serge Rey <serge@rohan.sdsu.edu>
- Re: routing help on dual homed box
  - From: Ron Johnson <ron.l.johnson@home.com>
- Re: routing help on dual homed box
  - From: Willi Dyck <willi.dyck@web.de>
- Re: routing help on dual homed box
  - From: Ron Johnson <ron.l.johnson@home.com>

Prev by Date: X not working after upgrade
Next by Date: Re: this debconf stuff is crazy!
Previous by thread: Re: routing help on dual homed box
Next by thread: Re: routing help on dual homed box
Index(es):
- Date
- Thread