>Date:         Thu, 11 Dec 1997 12:45:41 -0500
>Reply-To:     John Korb <[log in to unmask]>
>Sender:       HP-3000 Systems Discussion <[log in to unmask]>
>From:         John Korb <[log in to unmask]>
>Subject:      Restricting inbound telnet by IP address
>To:           [log in to unmask]
>
>Does anyone know of a way to restrict inbound telnet (MPE/iX 5.5) by IP
>address?  Some powers-that-be have decided to take down the firewall.
>
>John
>--------------------------------------------------------------
>John Korb                            email: [log in to unmask]
>Innovative Software Solutions, Inc.
>
>The thoughts, comments, and opinions expressed herein are mine
>and do not reflect those of my employer(s), or anyone else.
>

John,

You can limit incoming telnets to your machine by using the
INETDSEC.NET.SYS file. If you haven't made use of this file
previously, there's a sample file - INSECSMP.NET.SYS - you
can copy to INETDSEC.NET.SYS and make changes from there.
You will also need to link it with the posix name
     NEWLINK /usr/adm/inetd.sec, INETDSEC.NET.SYS

I think you can even use the wildcard "*" in the IP address
portion - big timesaver. Details are in the "Configuring
and Managing MPE/iX Internet Services" manual, if you've
got one handy.

                Chris


**********************************************************************

Christopher H. Boggs           email:  [log in to unmask]
Computer Services              phone:  540/376-1041
Clinch Valley College          fax #:  540/328-0115
1 College Ave.
Wise, VA 24293