Re: [PLUG] iptables question

John Lavin on 7 Mar 2004 05:10:03 -0000

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] iptables question

From: John Lavin <jlavin@wayreth.net>

To: plug@lists.phillylinux.org

Subject: Re: [PLUG] iptables question

Date: Sun, 7 Mar 2004 00:09:44 -0500

Reply-to: plug@lists.phillylinux.org

Sender: plug-admin@lists.phillylinux.org

User-agent: Mutt/1.5.5.1+cvs20040105i

Tobias DiPasquale said: > s/INPUT/FORWARD/g Actually, I think I do want INPUT/OUTPUT. I'm not forwarding these requests onto another box - they stay there on the box with the firewall. I also want to restrict these rules to the eth1 card so I need to keep the rules to only eth1. I settled on the following. seems to work for me: # each different mac address to allow.... iptables -A INPUT -i eth1 -m mac --mac-source xx:xx:xx:xx:xx:xx -j ACCEPT iptables -A INPUT -i eth1 -m mac --mac-source xx:xx:xx:xx:xx:xx -j ACCEPT iptables -A INPUT -i eth1 -m mac --mac-source xx:xx:xx:xx:xx:xx -j ACCEPT iptables -A INPUT -i eth1 -j DROP I was toggling each of the specific mac lines, and getting blocked and allowed when I should be on each. Thanks, -john -- John Lavin <jlavin@wayreth.net> http://www.wayreth.net ,''`. Fingerprint: B0AA 4A33 D43F BA67 E524 22F3 DA3B F8C8 2BA4 8C46 : :' : To guarantee free and fair elections in Iraq as soon as possible, `. `' President Bush announced he would be sending Katherine Harris to `- Baghdad next week. --Boondocks
Attachment: signature.asc
Description: Digital signature

References:

[PLUG] iptables question
From: John Lavin <jlavin@wayreth.net>

Re: [PLUG] iptables question
From: Tobias DiPasquale <toby@cbcg.net>

Re: [PLUG] iptables question
From: Tobias DiPasquale <toby@cbcg.net>

Prev by Date: Re: [PLUG] iptables question

Next by Date: [PLUG] Script FTP session?

Previous by thread: Re: [PLUG] iptables question

Next by thread: [PLUG] Script FTP session?

Index(es):

Date

Thread