cancel
Showing results for 
Search instead for 
Did you mean: 

Configure vnetd to listen on specifik network interface

Foxtrot_Lima
Level 3
I have a SLES 10 linux client with two network interfaces. One is connected to internet and one is backup lan.

Is it possible to configure vnet to only listen on the backup lan interface? I know you can do that with a firewall, but want to know if it's possible to not even get the vnet daemon started on the internet interface?

Thanks
Fredrik
1 ACCEPTED SOLUTION

Accepted Solutions

Nicolai
Moderator
Moderator
Partner    VIP   

I found this article regarding xinetd access control. Seems you can limit access by IP segment.

http://www.linuxfocus.org/English/November2000/article175.shtml

View solution in original post

10 REPLIES 10

Foxtrot_Lima
Level 3
Of course I mean spicific ;)

Nicolai
Moderator
Moderator
Partner    VIP   
I don't think you can limit the ports vnetd listen to. But you can use iptables to filter/firewal off the internet.

From the man :

IPTABLES(8)                                                                                          IPTABLES(8)



NAME
       iptables - administration tool for IPv4 packet filtering and NAT

SYNOPSIS
       iptables [-t table] -[AD] chain rule-specification [options]
       iptables [-t table] -I chain [rulenum] rule-specification [options]
       iptables [-t table] -R chain rulenum rule-specification [options]
       iptables [-t table] -D chain rulenum [options]
       iptables [-t table] -[LFZ] [chain] [options]
       iptables [-t table] -N chain
       iptables [-t table] -X [chain]
       iptables [-t table] -P chain target [options]
       iptables [-t table] -E old-chain-name new-chain-name

DESCRIPTION
       Iptables  is used to set up, maintain, and inspect the tables of IP packet filter rules in the Linux ker
       nel.  Several different tables may be defined.  Each table contains a number of built-in chains  and  may
       also contain user-defined chains.

       Each  chain  is  a list of rules which can match a set of packets.  Each rule specifies what to do with a
       packet that matches.  This is called a `target', which may be a jump to a user-defined chain in the  same
       table.



Foxtrot_Lima
Level 3
I know this can be done with iptables, but still want to know if there's any configure options for vnetd or xinitd.

Nicolai
Moderator
Moderator
Partner    VIP   

I found this article regarding xinetd access control. Seems you can limit access by IP segment.

http://www.linuxfocus.org/English/November2000/article175.shtml

Will_Restore
Level 6
DOCUMENTATION: How network interfaces are selected in NetBackup 6.x when there are multiple NICs on a NetBackup host.
http://seer.entsupport.symantec.com/docs/293038.htm

How to configure the Required Network Interface on a VERITAS NetBackup (tm) master server
http://seer.entsupport.symantec.com/docs/264832.htm

Will_Restore
Level 6
not specific ?

Foxtrot_Lima
Level 3
Thank you.

Specific it is

rjrumfelt
Level 6
The technotes should be the first place to go when needing assitance

Foxtrot_Lima
Level 3
I have not voted on the comment

Foxtrot_Lima
Level 3
Okay, this is how it's done.

in /etc/xinetd.config file add
interface = <IP of desired interface>

or this can be done in the config file for the desired service under /etc/xinetd.d/