Infrastructure Software

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

Drop connection (access control) using tcp wrapper on solaris 10

807557May 25 2009 — edited May 25 2009

Dear all,
I want to drop all connection (for example : ssh) from my network other than the systems who have a valid entry in my /etc/host locally. This means I wanted to allow in/out traffic from the system whose host is resolvable (DHCP is activated in my setup) and drop rest. From the man page of tcp wrappers, it is evident that "PARANOID" is the right option to achieve.

From man page,
PARANOID: Matches any host whose name doesn't match its address

I have the following line in /etc/hosts.allow.
cat /etc/hosts.allow
sshd: PARANOID : severity debug

But still it allows sshd connection. Also I tried adding "ALL: PARANOID" but still SSH connection is possible from other systems in the local network.

Have some one have successfully configured PARANOID on solaris 10?. If so, please help me

Thanks in advance,
Prabu.S

Locked Post

New comments cannot be posted to this locked post.

Locked on Jun 22 2009

Added on May 25 2009

#oracle-solaris, #solaris-10

2 comments

276 views