Secure VINO (remote desktop) to specific interface and/or IP address?
I would like to restrict remote desktop access to a specific network interface on a Fedora box that has multiple NICs. I figure a simple iptable rule might do this well, but I am not sure how to setup an INPUT, REJECT rule.
If I wanted to for example, block remote desktop from responding on NIC interface eth1 I figured this rule might work, but it does not.
-A INPUT -i eth1 -p tcp --dport 5900 -j REJECT
Anyone try to do this? Unfortunately, remote desktop process does not have a configuration file option like 'Listen x.x.x.x' like SSH does, that would make things easier!
Any help appreciated.