Koozali.org: home of the SME Server

Obsolete Releases => SME Server 7.x => Topic started by: byte on April 26, 2006, 03:01:14 PM

Title: Allowing one user access to port 5190 - Using iptables Ques
Post by: byte on April 26, 2006, 03:01:14 PM
On a old SME server I used to have it setup so that one user can access AOL via 5190 and all the others was disabled by doing a custom template like...

$OUT .= " /sbin/iptables --append Forward$AllowLocals ".
   ".s ! 192.168.1.x -d 0/0 -p tcp --dport 5190 -j denylog\.";

In the new version 7.0rc1 I've had a look in /etc/rc.d/init/masq and I can see it's little bit different from the old setup, so my question is how would I setup that again to allow only one user to log onto one port?

So I thought I've making a custom template called 40AllowLocal and adding

/sbin/iptables --append local_chk_1 \
   -s ! 192.168.1.x -d 0/0 -p tcp --dport 5190 -j denylog

Then expand the template and restart the masq service again, I then go to type iptables -L and I don't see the custom change I have added?

Thanks for any pointers, I shall keep trying this in mean time
Title: Allowing one user access to port 5190 - Using iptables Ques
Post by: cactus on April 27, 2006, 12:10:56 AM
I think you can do this using the port-forward option from the SMEServer 7.0 server manager, I believe it is a default feature now, else you will have to look for the contrib.
Title: Allowing one user access to port 5190 - Using iptables Ques
Post by: byte on April 27, 2006, 12:16:15 AM
Cactus,

I was starting to sway that way, I'll give that a try tomorrow! Thanks!