tcpd to allow only on port in; how?

["Hossein S. Zadeh" <hossein bf rmit edu au>]

Hi there,
I use tcpd to manage connection to one of my machines
(tcp_wrappers-7.6-4). It has come to my attention that this version of
tcpd monitors connection to *all* ports. I.e. it does not affect *only*
services listed in /etc/inetd.conf but *all* ports. For example if I have
"ALL : ALL" in hosts.deny, connections to port 22 (ssh) is denied; even
though ssh is not called by tcpd (it is not even mentioned in inetd.conf 
yet alone being called via tcpd). I had to use "ALL: IP_of_my_workstation"
to get ssh working.

This is all good and dandy, but I run squid on the same machine. I would
like to allow connections from hosts on a subnet to connect to the port
that squid is listening to. And I don't want to allow any other connection
from the subnet. I know that hosts.allow and deny syntax is of the form
"in.telnetd: 192.168.0.". But I don't know how to let in incoming packets
addressed to a certain port. And I do *not* want use use "ALL: the_subnet"
in hosts.allow.

Any ideas?

cheers,
Hossein

,-----------------------------------------------------------------------,
|          ...Mary had a little ram and Windows was so slow...          |
|-----------------------------------------------------------------------|
|                            Hossein S. Zadeh                           |
|                         hossein bf rmit edu au                        |
|-----------------------------------------------------------------------|
| Dept of Aerospace Engineering    | RMIT-Faculty of Business           |
|  (YES! I AM a rocket scientist!!)|    (YES! I AM in business!!)       |
|                                                                       |
| Royal Melbourne Institute of Technology (RMIT), Melbourne, Australia  |
'-----------------------------------------------------------------------'