On Mon, 11 Sep 2000, Martin Brown wrote:
> The man page for 'netstat' on my system [RH 6.1] does not mention the '-a'
> option. What does it do?
On my system, the man page says:
-a, --all
The -a, --all option will print information about all
sockets, including the listening server sockets.
> In my case, there are more inetd services listening than are specified in
> '/etc/inetd.conf'. Why/how does this happen?
Some sofware runs as its own daemon for better control of the sockets, or
better performance.
> What the hell is TAC News (port 98)?
Port 98 is used by Linuxconf-web. Point your browser at it. Fear
it. turn it off.
> Given a line of output like:
>
> tcp 0 0 0.0.0.0:3306 0.0.0.0:* LISTEN
> 563/mysqld
>
> ^^^^^^^ ^^^^^^^
> ^ ^
> local foreign
>
> I assume that the 'local' address is where inquiries are going, and that
> the 'foreign' address is where the inquiries are coming from...
>
> Why isn't the local address 127.0.0.1?
I believe that if, when writing a daemon, you define the local interface
as a network address (such as 127.0.0.1), then the daemon will only listen
on the interface that has that number. Bind does this.
> If you wanted a service to accept inquiries only from your LAN and not the
> net at large, I assume you would change the 'foreign address' to, for
> example, 192.168.0.x. In services not covered by inetd, such as mysqld
> above, where does one change the address specifications for that port?
The software may or may not provide a mechanism to do so. Use ipchains
for control of your ports.
I suppose now is a good time to mention (once again) my ipchiains script
at ftp://duke.eburg.com/pub/linux/init.firewall, which I think is really
easy to configure. :)
MSG
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
