Portsentry tcpd and iptables question

To: <debian-user@lists.debian.org>
Subject: Portsentry tcpd and iptables question
From: "Patrick Kirk" <patrick@kirks.net>
Date: Sat, 3 Aug 2002 19:43:30 +0100 (BST)
Message-id: <[🔎] 2005.192.168.0.25.1028400210.squirrel@captain.kirks.net>

Hi all,

I want to set up security to enable the following:
- Access to all ports from 127.0.0.1
- Access to all ports from 192.168.0.0/24
- Access to ports 22, 80 and 143 from anywhere anytime.

Basically I want people who I host always to have IMAP and web access even
if someone from the same IP is launching an attack.
Likewise there are no circumstances under which not being able to ssh in
and administer the box will be appropriate.
The reason this matters is that someone at work keeps triggering
portsentry.  It amounts to a self-inflicted denial of service in that I
end up on the wrong side and have to ssh in from another host in order to
sort things out.  Yet all I need kept available are the ports above.
Thanks in advance.

Patrick

Reply to:

Follow-Ups:
- Re: Portsentry tcpd and iptables question
  - From: "Patrick Kirk" <patrick@kirks.net>

Prev by Date: Re: Securing a Debian 3.0 r0 system, and a few other quick questions . . .
Next by Date: Re: Securing a Debian 3.0 r0 system, and a few other quick questions . . .
Previous by thread: Re: Securing a Debian 3.0 r0 system, and a few other quick questions . . .
Next by thread: Re: Portsentry tcpd and iptables question
Index(es):
- Date
- Thread