IPTables Question
From: CodeHeads (will.w_at_code-heads.com)
Date: 10/30/05
- Previous message: Dan Hensley: "Re: How to test NIC performance?"
- Next in thread: Bill Perkins: "Re: IPTables Question"
- Reply: Bill Perkins: "Re: IPTables Question"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: Sun, 30 Oct 2005 10:20:19 -0500 To: "fedora-list@redhat.com" <fedora-list@redhat.com>, "linux_firewalls@yahoogroups.com" <linux_firewalls@yahoogroups.com>
Hello all,
I have a question on IPtables:
The following is for a LAN based IP address:
iptables -A FORWARD -p tcp -s 192.168.1.0/24 -i eth0 -j DROP
iptables -A FORWARD -p udp -s 192.168.1.0/24 -i eth0 -j DROP
Can this be used for WAN IP's?? Something like this:
iptables -A FORWARD -p tcp -s 68.68.68.68 -i eth0 -j DROP
iptables -A FORWARD -p udp -s 68.68.68.68 -i eth0 -j DROP
And also can wild cards be used?
iptables -A FORWARD -p tcp -s 68.* -i eth0 -j DROP
iptables -A FORWARD -p udp -s 68.* -i eth0 -j DROP
Thanks in advance,
~WILL~
-- fedora-list mailing list fedora-list@redhat.com To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list
- Previous message: Dan Hensley: "Re: How to test NIC performance?"
- Next in thread: Bill Perkins: "Re: IPTables Question"
- Reply: Bill Perkins: "Re: IPTables Question"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
- Re: IPTables Question
... CodeHeads wrote: ... > I have a question on IPtables: ... >
The following is for a LAN based IP address: ... I wouldn't use wild cards, ...
(Fedora) - htaccess (IP)
... In the directive is it possible to have wild cards for the ... deny from
192.168.1.* ... The above IP would be a WAN IP not a LAN IP. ... (Fedora) - Re: linux: router: -problem
... Can't you just use for WAN 192.168.0.70/24 (by the way this can't be a ... public
IP) and for LAN 192.168.1.70/24, then setup NAT (iptables -t nat ... (comp.os.linux.networking) - We have lots of users with SonicWalls for VPN connectivity in to FW-1, possible major security hole
... With default rule disabled: Disable default Src: LAN Dst: ALL ... The firewall
WAN address is 24.184.168.52 ... A NT server on the internal LAN is 192.168.1.22 ...
why is my internal server responding to this packet as a "Destination ... (Incidents) - Re: Connection to SonicWall VPN through Linux IPTABLES Firewall/Proxy
... I would never install something I didn't ... from the LAN and does NAT to provide
access to the Internet to the ... What iptables is doing is taking packets from
the LAN, ... (comp.security.firewalls)
