Quote:
Originally Posted by Skinny
@rocket357,
thx for the "unconventional" solution
Does that have potential side effects for other services running on the same machine?
|
Absolutely. That basically says "don't allow any dynamic port allocation to take place on these ports." If you list all but one, only one dynamic port will be available at any given point in time, which may very well restrict what you can and cannot do on the machine =)
Edit - The whole point of the "baddynamic" sysctls is to prevent a dynamically allocated port being set before a service that needs that particular port is started. If you're running ssh on 65022 (for whatever reason), you don't want an outbound connection to accidentally claim 65022 (which is within the legal range) as a temporary dynamic port, as that would cause ssh to not start. In short, I was being a smart alec. heh