Fedora Users — Re: how would I write this complex ip tables rule

Re: how would I write this complex ip tables rule

Date Prev

Date Next

Thread Prev

Thread Next

Date Index

Thread Index

To: fedora-list@xxxxxxxxxx

Subject: Re: how would I write this complex ip tables rule

From: Carlos Lopez <carloslopez@xxxxxxxxxxxxxxx>

Date: Sun, 11 Jan 2004 10:37:49 +1100

In-reply-to: <[email protected]>

References: <[email protected]>

Reply-to: fedora-list@xxxxxxxxxx

Sender: fedora-list-admin@xxxxxxxxxx

User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.6b) Gecko/20031205 Thunderbird/0.4

This should work (remember, iptables goes through all the filters/rules one at a time, so once it's caught on one it doesn't go further down the list - in this case, just make sure that you allow access to joe. and mary. in rules ABOVE the rule denying access to the rest of idiot.com) ... iptables -A INPUT -s joe.idiot.com -m tcp -p tcp -tcp http -m state --state NEW -j ACCEPT iptables -A INPUT -s mary.idiot.com -m tcp -p tcp -tcp http -m state --state NEW -j ACCEPT iptables -A INPUT -s idiot.com -m tcp -p tcp -tcp http -m state --state NEW -j DROP

c.

Technical wrote:

i want any to access my web server;
i want no one from idiot.com except joe.idiot.com and mary.idiot to access
my web server... thanks