Re: packet filtering vs. conserver

  Normally, a "stateful" packet filter will allow the "return ports" for all sessions opened from "inside" the firewall... In that case, Conserver initiates the TCP session, suggesting the port it is listening on, and the firewall should allow that returning communications.  

  Is this not possible for your firewall?

         -Z-

On Wed, Aug 19, 2009 at 7:23 AM, <Andras.Horvath@cern.ch> wrote:

Hi,

Is there a way to make conserver listen on a limited number of ports
only (instead of opening random ports)?

The manual page talks about the 'secondaryport' option but this seems to
do nothing at all, and I'm not at all sure that it's the option I need
anyway.

The reason I'm asking is that I have to devise a set of iptables (packet
filter) rules to let users in, as a policy.

thanks

Andras
_______________________________________________
users mailing list
users@conserver.com
https://www.conserver.com/mailman/listinfo/users

-- 
ConsoleTeam - Support and training services for Conserver users.
www.conserver.com/consoles/
consoleteam.blogspot.com