Warren Togami wrote:
...
However, why don't you use TCP wrappers and only allow access to the
tftpd port from your local subnet? I think iptables can do this too.
TCP wrappers probably won't work (unless they can do UDP also). TFTP is
run on UDP/69. IPtables, being a packet filter, can of course filter
this. Example:
iptables -A INPUT -p udp --dport 69 -s localnetwork -j ACCEPT
iptables -A INPUT -p udp --dport 69 -j REJECT
will allow TFTP from your local network, but then reject it from
anywhere else.
--MonMotha
