I'd like to setup iptables to not allow any connections to my Nessus server except to port 1241 from a centralized dispatcher host.
|-> Slave1 1241/tcp
Central Dispatch -----|-> Slave2 1241/tcp
|-> Slave3 1241/tcpI don't want to allow anything but this dispatcher to connect to the Nessus slaves.
Or in other words....
iptables -A INPUT -s dispatcher -p tcp --dport 1241 --syn -m state --state NEW -j ACCEPT
Of course I would allow already established connections (from Nessus scanning) to be accepted.
iptables -A INPUT -i eth0 -m state --state ESTABLISHED,RELATED -j ACCEPT
Has anyone done this? Theoretically I'd assume it's OK, but I'm wondering if anyone sees why this wouldn't work?
P.S. (Console will be use to manage the slaves)
-- Jack (Jay) E. Krous III Computer Systems Engineer Information Technologies & Services Division Lawrence Berkeley National Laboratory (510) 495-2522
