SINGLESOCK - How much to strip away?

[Hal Murray]

Gary said:
> You may say that can be duplicate in your firewall settings.  But maybe you
> want to run two ntpd ...

I assume firewalls are smart enough to allow different rules for different 
servers.

"firewall" is potentially ambiguous in this discussion.  It could refer to a 
package running on the local system or to a box at the interface between 
internal networks and the big-bad external internet.

My "different rules" comment was for a box.  If you are talking about 
software running on the local system you may need different rules for each 
system.


> Almost, but not quite, sufficient.  ntpd still needs a way to bind to some
> IP addresses and not others. 

If you can enumerate the IP Addresses that you want or the ones you don't 
want, then I think the restrict stuff will work.  The default entry handles 
the others.



-- 
These are my opinions.  I hate spam.