Hi. You can try to use iptables recent module, but i slightly different way: add source ips to list for knocking to one port, and grant access for target http/ssh port corresponding to this list records. Something like http://www.snowman.net/projects/ipt_recent/ 3rd example.
06.03.2015 11:26, Erich Titl пишет: > Hi Juergen > > Am 06.03.2015 um 07:18 schrieb j...@tux-net.de: >> Why should the access to these update servers be enabled dynamically? > I could enable that access statically, but that would mean I have to > adapt the firewall policies to a peripheral functionality. As I want to > add this functionality to the mainstream, I don't want to force users to > adapt the firewall policy. ------------------------------------------------------------------------------ Dive into the World of Parallel Programming The Go Parallel Website, sponsored by Intel and developed in partnership with Slashdot Media, is your hub for all things parallel software development, from weekly thought leadership blogs to news, videos, case studies, tutorials and more. Take a look and join the conversation now. http://goparallel.sourceforge.net/ ------------------------------------------------------------------------ leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
