Philipp Schulte, 2001-Sep-10 02:45 +0200: > On Mon, Sep 10, 2001 at 10:02:12AM +1000, Roger Keays wrote: > > > You want to check out ipchains. It is a packet filter which you can use to > > reject traffic based on protocol (tcp, udp, icmp), interface, > > source/destination address and port numbers. > > Jeffs idea to control with interfaces a service binds to is much > better than to let all services listen on all interfaces and restrict > them with ipchains. > KISS > Phil >
I already use iptables, and can accomplish the blocking that way, I just wanted to see if there was a way to keep the port from binding to an interface to start with. So, I'll continue with iptables for now. thanks, jc -- Jeff Coppock Nortel Networks Systems Engineer http://nortelnetworks.com Major Accts. Santa Clara, CA
