My apologies. Yes...a box running iptables could be used as a border/front end firewall. I'm using such a setup, now, on my DSL connection, to restrict access to the various machines on my home network. On Tue, 12 Oct 2004, Rick Lim wrote: > The boxes vary from unix servers to voip gateways etc, so IPTABLES is not an > option on each machine, what is required is a machine to funnel all acess > into and out of the subnet these machines are on. > > -----Original Message----- > From: fedora-list-bounces@xxxxxxxxxx [mailto:fedora-list-bounces@xxxxxxxxxx] > On Behalf Of Mike Burger > Sent: Tuesday, October 12, 2004 4:58 PM > To: For users of Fedora Core releases > Subject: Re: IP access restriction > > On Tue, 12 Oct 2004, Rick Lim wrote: > > > I have a friend that has a few boxes directly on the internet, which he > > thinks are being access by unwanted "visitors". > > > > These machine still have to have routable IP address but should have > limited > > access from external IP subnets. > > > > > > > > What would be suitable for limiting IP subnet access to these address? > > > > Would a 'firewall' like machine with IPTABLES be able to accomplish this, > > that is without changing the IP address passed through the 'firewallish' > > machine? > > iptables, on the system in question, should be sufficient. > -- Mike Burger http://www.bubbanfriends.org Visit the Dog Pound II BBS telnet://dogpound2.citadel.org or http://dogpound2.citadel.org To be notified of updates to the web site, visit http://www.bubbanfriends.org/mailman/listinfo/site-update, or send a message to: site-update-request@xxxxxxxxxxxxxxxxx with a message of: subscribe
