Hello Simons,
> And I have successfully deny all unused ports with ipchains on eth0, but I
> found that the ipchains deny all ports on eth0:0, some of my users on the
> network will connection to the eth0:0 IP and all of they are being reject
> now.
>
> Can the ipchains set rules on eth0:0 ?
Did you set your (input&/forward&/output) policies to DENY/REJECT, and then
opened up the ports you want to with ACCEPT rules? In that case you could just
duplicate your ACCEPT rules for the second IP address.
I am not sure that if you specify a device in a rule eth0 and eth0:0 make any
difference. You should just try it.
If, as Gordon suggested, using eth0 and eth0:0 doesn't make a difference you
could try adjusting your rules to look at which device is used, instead of
which IP. This depends on the way your rules are setup though.
Good luck,
Leonard.
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
