Skip to Content.
Sympa Menu

perfsonar-user - Re: [perfsonar-user] SSH Port and updates override local configuration

Subject: perfSONAR User Q&A and Other Discussion

List archive

Re: [perfsonar-user] SSH Port and updates override local configuration


Chronological Thread 
  • From: Andrew Lake <>
  • To: Joseph Ghobrial <>,
  • Subject: Re: [perfsonar-user] SSH Port and updates override local configuration
  • Date: Mon, 11 Sep 2017 09:10:25 -0700
  • Ironport-phdr: 9a23:5m4BsByrO3vt5ErXCy+O+j09IxM/srCxBDY+r6Qd2+sfIJqq85mqBkHD//Il1AaPBtSLraocw8Pt8InYEVQa5piAtH1QOLdtbDQizfssogo7HcSeAlf6JvO5JwYzHcBFSUM3tyrjaRsdF8nxfUDdrWOv5jAOBBr/KRB1JuPoEYLOksi7ze6/9pnQbglSmDaxfa55IQmrownWqsQYm5ZpJLwryhvOrHtIeuBWyn1tKFmOgRvy5dq+8YB6/ShItP0v68BPUaPhf6QlVrNYFygpM3o05MLwqxbOSxaE62YGXWUXlhpIBBXF7A3/U5zsvCb2qvZx1S+HNsDtU7s6RSqt4LtqSB/wiScIKTg58H3MisdtiK5XuQ+tqwBjz4LRZoyeKfhwcb7Hfd4CRWROXMhRWStODY2ybIUBEvQPMvpDoobnu1cDtwGzCBOwCO7tzDJDm3/43bc90+QkCQzLwAogEM8UsHvKotT+KaEcXvq2zKbW0D7OaOlZ2THg54nIaR0uv+qMUah2ccXP1UkiDgXIhUiep4ziOjOazOUNs26D4up4S+2vkWAnqxp2ojip3MgskJPFhoQLxVDY7Sl52oc1KsGmR0Jhf9GrDYZQuieHPIV1WsMvW3xktDg5x7Ect5O3ZicHxIk9yxPeaPGLa5aE7g7nWeqLIjp1hGhpdKyiixu960StyPPwW8+p21hQtCVFiMPDtnUV2hzT9MeHTvx981+v2TmR2Q3f8OVELlswlabBJJ4hxaAwmoISsUTFACD2hF37gLKIekgn4OSl5f7rb7r7qpOGNoJ5iRnyMqE0lcy+BeQ4PBIOX2+e+emkzrLj+1D2QbVRg/IoianVqpbaKtoHpqKhGQ9azp4j6wqjDzehyNkYhWcILEhLeBKciIjpPUvBIOrhAfeimFSjji1ryuvCPr3gGZXNMmPDnKn7cbZ87U5c1BQ8zcpZ551KFrENPuj/VVHsu9zFXVcFNFmWxP3qENU1+YMZU3iOC6vRZKHdsViC/OMmJ8GWZYQY/jvxNq5hr+bjl3EinlkUZ+y0xpYNQHG+Avl8JUiFOzzhjspSP30Nu18XSuDwhULKdTdQaj7mVqQw9xk2E8SgAJuVFdPlu6CIwCruRs4eXWtBEF3ZVC6wL4g=
Hi,


TL;DR: Leave the perfSONAR chain alone and add your rules in a chain of higher priority.

Hope that helps,
Andy



On September 11, 2017 at 11:40:42 AM, Joseph Ghobrial () wrote:

Hi, I prefer to have my SSH port accessible to a restricted set of addresses, however the default perfSONAR iptables rules allows ssh from anywhere overriding my rules. How do I change the default behavior such that perfSONAR updates exclude including the builtin SSH rule? Or how do I change the default rule to be the way I want it?

Thanks,
Joseph

--
Joseph Ghobrial
Systems Analyst II
Office of Information Technology
Rice University
jghobrial@ rice.edu
x5190

Archive powered by MHonArc 2.6.19.

Top of Page