Ping a Specific Port

Question

Marco Ceppi

Asked: 2011-08-30 13:11:24 +0800 CST2011-08-30 13:11:24 +0800 CST 2011-08-30 13:11:24 +0800 CST

Restrict Port range to a user

772

On a server with several users I'm looking to reserve port ranges so that only one user has access to a specific port range, IE

user1: 2000-2005
user2: 2006,3003
user3: 1025

In doing so, an application spawned by that user can only access ports allotted to that user. All other ports would fail to bind. Is there a way to do this on a Linux (Ubuntu) server?

1 Answers

Voted

Pablo Martinez · Answer 1 · 2011-08-30T15:01:05+08:00

Pablo Martinez

2011-08-30T15:01:05+08:002011-08-30T15:01:05+08:00

I don't know if iptables owner module would help you, it will allow you to apply rules regarding the owner. You could do something like:

iptables -I OUTPUT -m owner --uid-owner=pmartinez -p tcp -m multiport --sports 2000:2005 -j ACCEPT
iptables -I OUTPUT -m owner --uid-owner=pmartinez -j REJECT

That won't avoid binding but it will block all traffic and only allow the specified ports.

1

Restrict Port range to a user

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Resolve host name from IP address

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?