On Wed, Oct 31, 2001 at 17:06 +0100, Peer Stefan wrote:

Or, more elegantly, you could apply your rules from your ip-up script and fetch the ip address from ifconfig or dns or whatever: ip_addr=`ifconfig eth0 | grep "inet addr" | awk '{ print $2}' | awk -F : '{print $2}'` ... ipchains -A -s 0/0 -d $ip_addr 22 -p tcp -y -l -j ACCEPT ...

Why would you do that? The (i)pppd hooks ip-up and ip-down already provide the IP (and some more things of interest) in their parameter list. "man pppd" usually holds the necessary information. Another point: Running grep(1) on ifconfig(8) output - and surely others - does not always work. Some braindea^H^H^W misguided programmer thought it would be a bright idea to put NLS support in these system query tools and now annoys users and administrators with "friendly" output while breaking those recipients who aren't programmed by fuzzy logic means. :[ I guess that's why SuSE nowadays has different locales for administrative and "real person" accounts? (sic) virtually yours 82D1 9B9C 01DC 4FB4 D7B4 61BE 3F49 4F77 72DE DA76 Gerhard Sittig true | mail -s "get gpg key" Gerhard.Sittig@gmx.net -- If you don't understand or are scared by any of the above ask your parents or an adult to help you.