Uncomment the following 2 lines in /etc/systemimager/rsync_stubs/10header:
#hosts allow = 127.0.0.1 #hosts deny = 0.0.0.0/0
Re-run si_mkrsyncd_conf:
# si_mkrsyncd_conf
Restart the rsync daemon:
# /etc/init.d/systemimager-server-rsyncd restartIn this way connections to the rsync exported images will be forbidden except from localhost (this will be used by sshd after the SSL tunnel will be opened).