SUMMARY: Blocking Access to certain IPs/Domains

From: Sun Managers List (sun-list@orionsystems.com)
Date: Tue Feb 13 1996 - 18:01:55 CST


Hi all...

My original question was a longer version of this:

How do I stop telnet access to www.domain.name.com without stopping
telnet access to www.domain.name.2.com when the same machine plays the
role of different IPs.

The quickest, easiest, cheapest and most powerful solution to this was to
install TCP Wrappers 7.2. This allowed me to stop access to one domain
(IP) without limiting access to the other, when both were running from
the same machine. It is also has a very useful logging facility. If
you haven't already done so, you should take a look at this very useful
package by Wietse Venema.

TCP Wrappers and other priceless security tools can be found at CIAC
(Computer Incident Advisory Capability) US Department of Energy:

http://ciac.llnl.gov/ciac/ToolsUnixNetSec.html#Tcpwrappers

There is also another alternative that may be more suitable for you. It
is Firewall software. Firewall-1 is commercial and ranges from $5000 to
$18000. It may be more powerful and extensive but I did not look into it
fully because TCP Wrappers was suitable for me.

Firewall-1 can be found at: http://www.checkpoint.com

Thanks to the following people for there input on this subject:

Daniel Blander Daniel.Blander@ACSacs.com
Mark Kern u00y0115@hsc.hac.com
Rick Pluta pluta@eda.mke.ab.com
Kent R Arnott karnott@falcon.tamucc.edu

----

- George R. Saunders george@orionsystems.com

Orion Systems Group Long Island, New York



This archive was generated by hypermail 2.1.2 : Fri Sep 28 2001 - 23:10:53 CDT