$host = $1;
} elsif ( /^\s+(\S+)\s+(.+)/ ) {
$ssh_tunnel->{$host}++ if lc($1) eq 'remoteforward' && $2 =~ m/9001/;
+ } elsif ( /^\s+$/ ) {
+ # nop
} else {
- die "can't parse $_";
+ warn "can't parse [$_]";
}
}
while (my $client = $server->accept()) {
my $line = <$client>;
chomp($line);
- warn "<<< $line\n";
+
+ my $peerhost = $client->peerhost;
+ if ( $peerhost !~ m/^(10\.13\.37\.|10\.60\.0\.)/ ) {
+ print $client "$peerhost not allowed\n";
+ next;
+ }
+
+ warn "<<< $peerhost $line\n";
my ($user,$hostname,$pwd,$command,$rel_path,$message) = split(/\s+/,$line,6);
$hostname =~ s/\..+$//;