asked on

ipchains and remote port

Hi,

I have set up ipmasqadm and want to use ipchains to
protect an application with uses port xxxx to be used
remote by everyone BUT I also want a couple of people with specific IP adresses to USE it REMOTE.

What do I have to use with /sbin/ipchains ....... ?

Jeffeny

vsamtani

I'm not precisely sure what you're trying to do, but the options you probably need to specify in ipchains are:

--source-port <portnumber>
--destination-port <portnumber>
--source <ipaddress>/<mask>
--destination <ipaddress>/<mask>

If you could specify the situation you're in, perhaps with an example, it would help.

Vijay

harryv

ASKER

On one of my servers I run "nessusd". A few people must be able to use the daemon remote but it is to dangerous to run
nessusd on for expample port 2222 with can be accessed by everone.

Jeffeny

vsamtani

Do you mean that you need to allow some clients to access the daemon which is running on your server from a remote location?

Vijay

harryv

ASKER

Yep

ASKER CERTIFIED SOLUTION

vsamtani

membership

This solution is only available to members.

To access this solution, you must be a member of Experts Exchange.

Start Free Trial

The--Captain

harryv - if you want to authenticate the users of the services, then you might try making your remote clients use ssh tunnels, VPN, etc.

Otherwise, I'd say Vijay's comments should work just fine.

-Jon

The--Captain

Harryv - I guess you didn't need secure access

(a tip o' the hat to Vijay for his excellent answer).

-Jon

vsamtani

Jon - thank you. High praise. I am posting a question for you to collect points for your assistance on the routing / bridging and ADSL question about two weeks ago...please look out for it at

https://www.experts-exchange.com/jsp/qShow.jsp?qid=20153402

Vijay