On Du, 13 mar 11, 11:15:28, Michael Friendly wrote: > > For example, there is currently one rule allowing me to ssh from a > PC in my office > > iptables -A INPUT -s 130.xxx.xxx.xx/32 -p tcp --destination-port 22 > -j ACCEPT > > I can mimic this for another PC (e.g., in my lab), but I'd like to > be able to use ssh from home, where I don't think I have a fixed IP > address from my service provider.
Is this the only reason you want to "tweak" the firewall? It might be easier to setup a dynamic DNS address for home (there are several free providers) and use a reverse SSH tunnel. Such a tunnel can be used for more than just SSH ;) Regards, Andrei -- Offtopic discussions among Debian users and developers: http://lists.alioth.debian.org/mailman/listinfo/d-community-offtopic
signature.asc
Description: Digital signature
