Re: IPTables Question

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

CodeHeads wrote:

Hello all,

I have a question on IPtables:

The following is for a LAN based IP address:
iptables -A FORWARD -p tcp -s 192.168.1.0/24 -i eth0 -j DROP
iptables -A FORWARD -p udp -s 192.168.1.0/24 -i eth0 -j DROP

Can this be used for WAN IP's??  Something like this:
iptables -A FORWARD -p tcp -s 68.68.68.68 -i eth0 -j DROP
iptables -A FORWARD -p udp -s 68.68.68.68 -i eth0 -j DROP

And also can wild cards be used?
iptables -A FORWARD -p tcp -s 68.* -i eth0 -j DROP
iptables -A FORWARD -p udp -s 68.* -i eth0 -j DROP

Thanks in advance,
~WILL~
No reason why not. I wouldn't use wild cards, but I would use CIDR notation (xxx.xxx.xxx.0/24) for wild cards; e.g. 
iptables -A FORWARD -p tcp -s 68.0.0.0/8


--
-------------------------------------------------------------------------------
"The two most common things in the	| Bill Perkins
 universe are Hydrogen and Stupidity."	| perk@xxxxxxx
					| programmer-at-large
		F. Zappa		| ALL assembly languages done here.
-------------------------------------------------------------------------------
[Index of Archives]     [Current Fedora Users]     [Fedora Desktop]     [Fedora SELinux]     [Yosemite News]     [Yosemite Photos]     [KDE Users]     [Fedora Tools]     [Fedora Docs]

  Powered by Linux