Re: (PM) Filter question

• Messages sorted by: [ date ][ thread ][ subject ][ author ]
• Next message: Jon Lewis: "Re: (PM) PM2ER/PM3 source address (fwd)"
• Previous message: David A. Taylor: "(PM) Filter question"
• In reply to: Jon Lewis: "Re: (PM) PM2ER/PM3 source address (fwd)"
• Next in thread: Josh Richards: "Re: (PM) Filter question"

> I am trying to limit telnet into our net from the outside to two hosts
> only. . .I thought the following filter would do it, but it is not working.
> . .am I missing something here?
>
> 15 permit 0.0.0.0/0 xxx.xxx.xxx.x/32 tcp dst eq 23
> 16 permit 0.0.0.0/0 xxx.xxx.xxx.y/32 tcp dst eq 23

We would have to see the rest of the filter lines. Filters start at the
top and are applied until there is a match. At the very least you would
want

17 deny 0.0.0.0/0 0.0.0.0/0 tcp dst eq 23

if you expect a denial to other devices.

Doug Ingraham From the Ferengi Rules of Acquisition.
Rapid City, SD #34 "Peace is good for business."
USA #35 "War is good for business."

-
To unsubscribe, email 'majordomo@livingston.com' with
'unsubscribe portmaster-users' in the body of the message.

• Next message: Jon Lewis: "Re: (PM) PM2ER/PM3 source address (fwd)"
• Previous message: David A. Taylor: "(PM) Filter question"
• In reply to: Jon Lewis: "Re: (PM) PM2ER/PM3 source address (fwd)"
• Next in thread: Josh Richards: "Re: (PM) Filter question"