PD TC wrote:
hello,
We are new to the Total Controls and have been using Portmasters. We have been searching the manuals, the Internet and the maillist archives (through google searches) but have not found the answers for some questions.
On our portmasters, we can set up firewall scripts/filters to block denial of service attacks by blocking ip traffic directly to the ip address of the portmaster on its ethernet port except for our local network, dns, and radius servers external to us.
Is there a way to do this on the Total control? If so, what exactly do we need to do to implement it?
That might have some unespceted results. You can put filters in place. The syntax is pretty crude but you can filter on IP, ports, a combination, destination, source. Basically what you would expect. ustar has the docs on that and they are pretty complete. I think I have posted some filter configs before so if you search for filter it is likely to yield results.