[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Tor/Iptables Question



I believe if you just remove --dport, then everything (all ports) are assumed.


On Wed, Aug 19, 2009 at 1:01 PM, Ringo <2600denver@xxxxxxxxx> wrote:
"I prevent all users other than root from connecting to the Tor Control
port with an
> iptables rule which looks like this:
>
> iptables -A OUTPUT -o lo -p tcp --dport 9051 -m owner ! --uid-owner
root -j REJECT"

Thanks! That should work perfectly. Is there any way to make dport a
wildcard?

Ringo