Port blocking in MonMotha FIrewall ver 2.3.8-pre 2
MonMotha
monmotha at indy.rr.com
Sun Feb 17 15:10:14 PST 2002
The INTERNAL_LAN is always considered "trusted" and is granted full
access to the system. TCP_ALLOW and friends apply only to the
INET_IFACE. So you can get rid of 22 in TCP_ALLOW and have it blocked
from the internet, but still available from your LAN.
--MonMotha
beesond001 at hawaii.rr.com wrote:
> Aloha all,
>
> After reading the notes in the script, it seems to me that if I delete
> the secure shell port from my firewall under the "TCP_ALLOW" variable, I
> may be unable to get into my firewall via ssh. I would like to be able
> to use ssh to access my router from the internal lan, but not the
> internet. In other words, I want to block port 22 on the INET_IFACE and
> allow it on the LAN_IFACE. Does anyone know of a convenient way to do
> this? I am trying to close one more hole on my router.
>
> Mahalos in advance,
>
> Ben
>
> ---
> You are currently subscribed to luau as: monmotha at indy.rr.com
> To unsubscribe send a blank email to $subst('Email.Unsub')
>
>
More information about the LUAU
mailing list