IPTables Question
CodeHeads
will.w at code-heads.com
Sun Oct 30 15:40:01 UTC 2005
Bill Perkins wrote:
> CodeHeads wrote:
>> Hello all,
>>
>> I have a question on IPtables:
>>
>> The following is for a LAN based IP address:
>> iptables -A FORWARD -p tcp -s 192.168.1.0/24 -i eth0 -j DROP
>> iptables -A FORWARD -p udp -s 192.168.1.0/24 -i eth0 -j DROP
>>
>> Can this be used for WAN IP's?? Something like this:
>> iptables -A FORWARD -p tcp -s 68.68.68.68 -i eth0 -j DROP
>> iptables -A FORWARD -p udp -s 68.68.68.68 -i eth0 -j DROP
>>
>> And also can wild cards be used?
>> iptables -A FORWARD -p tcp -s 68.* -i eth0 -j DROP
>> iptables -A FORWARD -p udp -s 68.* -i eth0 -j DROP
>>
>> Thanks in advance,
>> ~WILL~
>>
> No reason why not. I wouldn't use wild cards, but I would use CIDR
> notation (xxx.xxx.xxx.0/24) for wild cards; e.g.
> iptables -A FORWARD -p tcp -s 68.0.0.0/8
>
>
Thank you Bill :) I appreciate it.
~WILL~
More information about the fedora-list
mailing list