using selinux to allow only certain hosts or networks

Doug Sikora dsikora at redhat.com
Tue Dec 9 14:15:32 UTC 2008


The below rules came from audit2allow,

allow test_t inaddr_any_node_t:tcp_socket node_bind;
allow test_t inaddr_any_node_t:udp_socket node_bind;

Instead of allowing "any_node" I would like to limit this to specific hosts and or networks.

Does anyone know the syntax for this?

Thanks
Doug




More information about the selinux mailing list