Subject: Re: [netatalk-admins] how do you restrict netatalk by ip address?
From: Michael M Han (han@windy.ckm.ucsf.edu)
Date: Tue Jul 28 1998 - 13:03:20 EDT
Running IP-only is easy enough w/ the asun patches. And TCP wrappers
are freely available. It's the most elegant approach IMHO. If we're
talking stock netatalk w/ Atalk only, there's no way to filter at all
(that I know of) unless you start segmenting your AppleTalk network so
undesirables can't see the netatalk box. Or if you're running
something obscure like a IP tunnel for Atalk. Basically though, if you
want to filter connections to netatalk, use asun and TCP wrappers.
Works great for me.
Previously...
>Adrian Sun's release of netatalk has support for TCP Wrappers. However,
>I'm guessing that to make this work you'll have to somehow disable the
>Ethertalk, so it only uses TCP/IP.
>
>On Tue, 28 Jul 1998 nielsen@www.tcu-inc.com wrote:
>
>> Is there any easy way to restrict netatalk according to the ipaddress?
>> I was trying to use ipfwadm to block a port, but I couldn't specify the
>> protocol (which happens to be ddp) because it said it was unrecognized.
_________
mike (han@library.ucsf.edu)
I will not bury the new kid
- The collected wisdom of Bart Simpson
This archive was generated by hypermail 2b28 : Sat Dec 18 1999 - 16:33:00 EST