Jim Staunton wrote:
I have several SuSE 10.3 systems which have one network card but multiple ip addresses, the additional addresses are set up as aliases through YaST. For instance on one system, eth0 is x.y.z.69, eth0:1 is x.y.z.70 and eth0:2 is x.y.z.71.
Is there any way I can allow access to specific ports/services on specific ip addresses through YaST's SuSEfirewall2 module? I'm aware that I could do this 'manually' using iptables, but I'd prefer to do it the 'SuSE way' using YaST or entries in /etc/sysconfig/SuSEfirewall2 - always assuming there is a SuSE way to do this :-)
I'm thinking of rules such as "allow ssh access to the box only on x.y.z.69", "allow a webserver to be accessed on x.y.z.70", "allow a mailserver to be accessed on "x.y.z.71".
Any ideas welcome....
Thanks,
Jim I do NOT speak for SGI in this forum.
There is the usual SuSEfirewall2 custom script callout: From /etc/sysconfig/SuSEfirewall2 # This is really an expert option. NO HELP WILL BE GIVEN FOR THIS! # READ THE EXAMPLE CUSTOMARY FILE AT /etc/sysconfig/scripts/SuSEfirewall2-custom # #FW_CUSTOMRULES="/etc/sysconfig/scripts/SuSEfirewall2-custom" FW_CUSTOMRULES="" -- Sent from my wired giant hulking workstation Nate Pearlstein - npearl@sgi.com - Product Support Engineer -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org