Re: [vserver] blocking ssh access from virtual server to physical one

About this list	Date view	Thread view	Subject view	Author view	Attachment view

From: Jon Bendtsen (jon+vserver_at_silicide.dk)
Date: Mon Apr 22 2002 - 05:13:04 EDT

Next message: Thomas Weber: "Re: [vserver] blocking ssh access from virtual server to physical one"
Previous message: Matthew Hill: "Re: [vserver] newvserver segfaults"
In reply to: Thomas Weber: "Re: [vserver] blocking ssh access from virtual server to physical one"
Next in thread: Jerry Wilborn: "RE: [vserver] blocking ssh access from virtual server to physical one"

Thomas Weber wrote:
>
> On Wed, Apr 17, 2002 at 02:59:05PM -0400, Jerry Wilborn wrote:
> > i tried implementing ipchains rules on the physical server to reject
> > packets, tried hosts.allow/deny combis
> >
> > has anyone been able to successfully block traffic coming from a virtual
> > server going to the physical server's ip?
>
> should be straight forward. With iptables it'd be like this:
> iptables -I INPUT -s vserversaddress --dport ssh -j DROP

And what if the IP address is the same as the server ??

What if you used the interface option?? So, only allowing from ethX?

JonB

Next message: Thomas Weber: "Re: [vserver] blocking ssh access from virtual server to physical one"
Previous message: Matthew Hill: "Re: [vserver] newvserver segfaults"
In reply to: Thomas Weber: "Re: [vserver] blocking ssh access from virtual server to physical one"
Next in thread: Jerry Wilborn: "RE: [vserver] blocking ssh access from virtual server to physical one"

About this list	Date view	Thread view	Subject view	Author view	Attachment view

This archive was generated by hypermail 2.1.4 : Mon Aug 19 2002 - 12:01:01 EDT