I used the following configuration to use different xinetd directives for a service depending on which interface the connection was initiated on. In the following example, my LAN interface has IP address 192.168.0.1, and my Internet interface has IP address 10.10.10.10. I used procedures very similar to these to configure to use two different sets of directives for an SMTP server on a system running RHEL5.<\/p>\n
The first thing I did was create a new entry in the \/etc\/services file. I will use telnet as an example.<\/p>\n
vi \/etc\/services
\n…
\ntelnetnew 23\/tcp
\n…<\/p>\n
Create new service configuation file:<\/p>\n
vi \/etc\/xinetd.d\/telnetnew<\/p>\n
service telnetnew
\n{
\n disable = no
\n flags = REUSE
\n wait = no
\n user = root
\n server = \/usr\/sbin\/in.telnetd
\n socket_type = stream
\n protocol = tcp
\n log_on_failure += USERID
\n log_on_success += USERID
\n only_from = 192.168.0.0\/24
\n instances = 100
\n bind = 192.168.0.1
\n}<\/p>\n
Modify the existing \/etc\/xinetd.d\/telnet configuration file with new directives:<\/p>\n
vi \/etc\/xinetd.d\/telnet
\n…
\n no_access = 192.168.0.0\/24
\n instances = 1
\n bind = 10.10.10.10
\n…<\/p>\n
Create the new service and enable it:<\/p>\n
chkconfig –add telnetnew
\nchkconfig telnetnew on<\/p>\n
Reload xinetd to implement the new configuration and the start the new service.<\/p>\n
service xinetd reload<\/p>\n
This configuration will enable only one telnet connection from the Internet and 100 from the LAN segment. I used this type of configuration for an SMTP server to reduced the number of connections from the Internet. <\/p>\n","protected":false},"excerpt":{"rendered":"
I used the following configuration to use different xinetd directives for a service depending on which interface the connection was initiated on. In the following example, my LAN interface has IP address 192.168.0.1, and my Internet interface has IP address 10.10.10.10. I used procedures very similar to these to configure to use two different sets [&hellip<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3],"tags":[47,45,46],"class_list":["post-319","post","type-post","status-publish","format-standard","hentry","category-documentation","tag-directives","tag-rhel5","tag-xinetd"],"share_on_mastodon":{"url":"","error":""},"_links":{"self":[{"href":"https:\/\/jim-zimmerman.com\/index.php?rest_route=\/wp\/v2\/posts\/319","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/jim-zimmerman.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/jim-zimmerman.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/jim-zimmerman.com\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/jim-zimmerman.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=319"}],"version-history":[{"count":1,"href":"https:\/\/jim-zimmerman.com\/index.php?rest_route=\/wp\/v2\/posts\/319\/revisions"}],"predecessor-version":[{"id":320,"href":"https:\/\/jim-zimmerman.com\/index.php?rest_route=\/wp\/v2\/posts\/319\/revisions\/320"}],"wp:attachment":[{"href":"https:\/\/jim-zimmerman.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=319"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/jim-zimmerman.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=319"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/jim-zimmerman.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=319"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}