Re: iptables help

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: Community support for Fedora users <users@xxxxxxxxxxxxxxxxxxxxxxx>
Subject: Re: iptables help
From: Samuel Kidman <samkidman@xxxxxxxxx>
Date: Wed, 6 Oct 2010 09:14:36 +0800
Delivered-to: users@xxxxxxxxxxxxxxxxxxxxxxx
In-reply-to: <AANLkTimrj7PZijWFD3aC6NOg1aJ19pL_UvwK61X+Ds+f@xxxxxxxxxxxxxx>
List-archive: <http://lists.fedoraproject.org/pipermail/users>
List-help: <mailto:[email protected]?subject=help>
List-id: Community support for Fedora users <users.lists.fedoraproject.org>
List-post: <mailto:[email protected]>
List-subscribe: <https://admin.fedoraproject.org/mailman/listinfo/users>, <mailto:[email protected]?subject=subscribe>
List-unsubscribe: <https://admin.fedoraproject.org/mailman/listinfo/users>, <mailto:[email protected]?subject=unsubscribe>
References: <AANLkTimrj7PZijWFD3aC6NOg1aJ19pL_UvwK61X+Ds+f@xxxxxxxxxxxxxx>
Reply-to: Community support for Fedora users <users@xxxxxxxxxxxxxxxxxxxxxxx>
Sender: users-bounces@xxxxxxxxxxxxxxxxxxxxxxx

On Wed, Oct 6, 2010 at 5:34 AM, mike lan <lan.mike88@xxxxxxxxx> wrote:

hello
still learnin iptables.
I need to setup an iptables script for an untrusted lan network , the firewall should only connect to two or three ip address on the lan and drop any other ip address on the lan .

thanks

--
users mailing list
users@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe or change subscription options:
https://admin.fedoraproject.org/mailman/listinfo/users
Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines

I think this would do it:

iptables -t filter --append INPUT --destination <ip address 1>,<ip address 2>,<ip address 3> -j ACCEPT
iptables -t filter --append INPUT -j DROP

so if the packet is going to one of the three trusted computers it gets accepted, otherwise dropped.

-- 
users mailing list
users@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe or change subscription options:
https://admin.fedoraproject.org/mailman/listinfo/users
Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines

References:
- iptables help
  - From: mike lan

Prev by Date: Re: How to get f 12 -- *t*w*e*l*v*e*, twelve???
Next by Date: Re: wrong "audio" card found?
Previous by thread: iptables help
Next by thread: How to get f 12 -- *t*w*e*l*v*e*, twelve???
Index(es):
- Date
- Thread

[Index of Archives] [Current Fedora Users] [Fedora Desktop] [Fedora SELinux] [Yosemite News] [Yosemite Photos] [KDE Users] [Fedora Tools] [Fedora Docs]

Powered by Linux