|
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
|
Re: [PLUG] identd question
|
Vik Bajaj wrote:
> The semantics of your description raise questions about the directionality
> of your ruleset for ident. Can you be more specific? Are you operating
> a masquerading/NAT environment? What are the specific rules in your ruleset
> which relate to ident?
>
> -V.
I've set the rules as follows using IPCHAINS:
ipchains --append input \
--jump ACCEPT \
--interface $EXTERNAL_INTERFACE \
--source $EXTERNAL_NETWORK $UNPRIVPORTS \
--destination $LOCALHOST $IDENTD \
--protocol tcp
ipchains --append output \
--jump ACCEPT \
--interface $EXTERNAL_INTERFACE \
--source $LOCALHOST $IDENTD \
--destination $EXTERNAL_NETWORK $UNPRIVPORTS \
--protocol tcp ! -y
I should also point out that I'm not entirely sure I've got identd working on
my workstation, either-- though I believe I do.
--
-----BEGIN GEEK CODE BLOCK-----
Version: 3.1
GMU/PA/CS/IT d s+:++ a C++ UL++>$ P+ L++>++++ E W++ N++ o-- K w---$ O
M+ V--- PS+ PE Y+ PGP- t+ 5-- X R* tv-- b++ DI++ D+ G++ e+ h--- r+++ y++++
-----END GEEK CODE BLOCK-------
For translation, see http://www.kluge.net/ungeek.html
______________________________________________________________________
Philadelphia Linux Users Group - http://www.phillylinux.org
Announcements-http://lists.phillylinux.org/mail/listinfo/plug-announce
General Discussion - http://lists.phillylinux.org/mail/listinfo/plug
|
|