Just use hosts.allow for select IP addresses while banning all else via hosts.deny. This is a very low level blocking solution that is native to Linux, very simple, and very secure. I believe it also operates "closer to the metal" and under xinetd, but I could be wrong on this.
No comments yet.