[jadmin] iptables and Jabber
Markus Meyer
markus.meyer at koeln.de
Mon Mar 12 10:57:42 CDT 2007
On [Mon, Mar 12 09:51], Norman Rasmussen wrote:
>internet? (match on process name, or uid - use -m owner --uid-owner,
>or --cmd-owner).
Hmm, owner match is not supported and I can't fiddle around in kernel.
>The alternative would be to write a stateful filter that detects DNS
>SRV responses, and treats them as expected connections.
Since this would be for me like the work Sysiphos has done, I think I'll
set up a rule that allows traffic for ports 5260-5269. A quick view
showed me that if SRV records are used the above are the used
ports(mostly).
So thanks for all the answers and the destroyed hope that assigned ports
are like a standard ;)
Cheers,
--
Markus Meyer
encrypted email preferred -> GPG: B87120ED - JAB: butterbluemchen at amessage.de
--- Es ist besser, in Ehren zu versagen, als durch Betrug erfolgreich zu
sein.
-- Sophokles (496-406 v.Chr.)
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://mail.jabber.org/pipermail/jadmin/attachments/20070312/5215378b/attachment.pgp
More information about the JAdmin
mailing list