AFP548 - Topic: Shutting off ports on one interface only

This topic has 2 replies, 2 voices, and was last updated 20 years, 4 months ago by Detrius.

Viewing 2 posts - 1 through 2 (of 2 total)

Author

Posts
December 10, 2004 at 7:08 pm #360141

Anonymous
Guest

Is there a way to do this? Like say I want to allow ftp services to one interface but not on the other. Do I need to install TCP_Wrappers or something or can this be setup out of the box?

Thanks
Mark

December 11, 2004 at 6:09 pm #360152

Detrius
Participant

You can add custom firewall modifications to the file /etc/ipfilter/ipfw.conf

See the ipfw man page for how to write up the rule.

What I would recommend is to not allow ftp at all in the ServerAdmin app and then manually open up the port for one ethernet interface. Make sure that you do have the rules enabled to deny all if it a packet isn’t specifically allowed–which is the default configuration.

Instead of shutting off ports on one interface, you are opening them on the other (same end result, but different approach).
Author

Posts

Viewing 2 posts - 1 through 2 (of 2 total)

You must be logged in to reply to this topic.

Comments are closed

Copyright © 2025 AFP548. All Rights Reserved.