From owner-freebsd-questions  Thu Aug  8 11:18: 7 2002
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 4B8D937B405
	for <freebsd-questions@freebsd.org>; Thu,  8 Aug 2002 11:18:02 -0700 (PDT)
Received: from labs.unixhideout.com (dsl-65-187-193-189.telocity.com [65.187.193.189])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 8AF2C43E6A
	for <freebsd-questions@freebsd.org>; Thu,  8 Aug 2002 11:18:00 -0700 (PDT)
	(envelope-from root@unixhideout.com)
Received: from unixhideout.com (webserver@localhost.unixhideout.com. [192.168.1.20])
	by labs.unixhideout.com (8.12.5/8.12.3) with SMTP id g78II1ZY051068
	for <freebsd-questions@freebsd.org>; Thu, 8 Aug 2002 14:18:01 -0400 (EDT)
	(envelope-from root@unixhideout.com)
Received: from 192.168.1.10
        (SquirrelMail authenticated user sagacious)
        by email.unixhideout.com with HTTP;
        Thu, 8 Aug 2002 14:18:01 -0400 (EDT)
Message-ID: <3173.192.168.1.10.1028830681.squirrel@email.unixhideout.com>
Date: Thu, 8 Aug 2002 14:18:01 -0400 (EDT)
Subject: Re: [s-x86] Limiting ssh connection per (1) USER/IP only..
From: "Mike" <root@unixhideout.com>
To: <freebsd-questions@freebsd.org>
In-Reply-To: <Pine.GSO.4.33.0208081200380.20138-100000@infinity.infineon.net>
References: <007801c23ec0$390c3720$0300000a@nocpc2>
        <Pine.GSO.4.33.0208081200380.20138-100000@infinity.infineon.net>
X-Priority: 3
Importance: Normal
X-MSMail-Priority: Normal
Reply-To: root@unixhideout.com
X-Mailer: SquirrelMail (version 1.2.7)
MIME-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: 8bit
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG


>
> Use IPFilter ... or under solaris look at the RBAC system
>
>
>
> On Thu, 8 Aug 2002, louie miranda wrote:
>
>> Hi, im planning to limit 1 user connection per user ip on ssh, is this
>> possible?
>>
>>
>>
>>
>>
>>
>> =====
>> Thanks,
>> Louie Miranda...
>>
>> WebUrl: http://axis0.endofinternet.org
>> Email: louie@linux.nu - louie@noc.chikka.com


Check these out.

http://www.unixhideout.com/tutorials/ipfw/

more specifically,
"# Allow in ssh function
${fwcmd} add 00200 allow log tcp from any to ${ip} 22 in setup keep-state
limit src-addr 4  </=--

"
-- 
Those of you who act like you know everything are very annoying to those
of us who do. You can easily play a joke on a man who likes to argue, just
agree with him.

Need to get a hold of me?
 finger sagacious@unixhideout.com


-----------------------------------------
Free email that kicks ass from UnixHideout
   "The UnixHideout network"
http://www.unixhideout.com/



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message