Novell Home

Is there a way to allow some networks in and some not via. ssh?

Novell Cool Solutions: Question & Answer

Posted: 23 Feb 2005

Q:
SUSE 9.2 includes a firewall and a configuration program for it. The problem is that it is very simplistic. I can allow SSH from external networks or not. I cannot see any way to allow SSH only from one particular network or another. (I want to open SSH only from my machines at work). Other than telling SUSE to turn the FW off, and then writing rules from hand, is there a way to make this work?

A:
It can be done, but as far as I can tell, not with the YaST frontend.

As I expect you don't want to write your own iptables script from scratch, The SUSEfirewall is configured in the file /etc/sysconfig/SUSEfirewall2. Try editing that file.

You want to have a look at the setting FW_TRUSTED_NETS

It should also work with YaST within the /etc/sysconfig editor.

Novell Cool Solutions (corporate web communities) are produced by WebWise Solutions. www.webwiseone.com

© 2014 Novell