firewall rules on OpenSUSE 11.0

I would like to allow only a few IPs to access the box (any service and any port (for TCP and UDP)) and deny all other IPs access to the box (again, any service and any port (TCP and UDP)).

In yast, firewall custom rules, I have added the IPs (both TCP and UDP) and in allowed services I have listed the services I want to allow.

In Allowed Services, I have allowed the services I would like.

eth0 is configured in external zone.

I guess everyone else, other that those IPs in the custom rule, should be denied access?

But I can still SSH to the box from anywhere.

The firewall is running.

Could someone please tell me what I’m doing wrong?


I have resolved the issue myself. Thanks.