Iptables action Return; Resolved 'automatic 'Static routes - Thanks

menonrr_at_jmu.edu
Date: 10/10/04

  • Next message: Eric Scott: "Re(OT): Iptables action Return; Resolved 'automatic 'Static routes - Thanks" 
    Date: Sun, 10 Oct 2004 12:36:08 -0400
To: Redhat <redhat-list@redhat.com>

    10/10

    My thanks to Ed Wilts for helping me to enable static routes
    at startup

    1. Made a new file /etc/sysconfig/ as static-routes. made it
    executable.

    2. Edited with entry for instance:
    any net 192.168.18.0 netmask 255.255.255.0 gw 192.168.1.6

    3. service network restart

    Also my thanks to Daniel Eugenin for an alternative way:

    1. Create a file route-eth1 {where eth1 is through which the
    route can be reached} in /etc/sysconfig/network-scripts

    2. Edit the file with entry:
    192.168.18.0/24 via 192.168.1.6

    3. Restart the network.

    The advice to put my firwall script in /etc/rc.d/init.d also
    worked to make the scripts execute automatic.

    ----------------------------------------------------------

    Question:

    I want to implement packet-limitting through my iptables
    firewall in Redhat 9.

    If I make a new chain and add these rules I would like to know
    if it would work.

    1.iptables -N LimitChain

    2.iptables -A LimitChain -m limit --limit 5/second
    --limit-burst 10 -j RETURN // Defining packet threshhold
                    

    3.iptables -A LimitChain -m limit --limit 1/second
    --log-prefix "Drop packets: " -j LOG // Log limit

    4.iptables -A LimitChain -j DROP

    Would the rule 2 return to the calling chain say INPUT chain
    if the limit is not reached; AND if the limit is reaches log
    and drop the packets with rules 3 and 4?

    Thank You.
    Sincerely,

    Menon 

    -- 
redhat-list mailing list
unsubscribe mailto:redhat-list-request@redhat.com?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list
  • Next message: Eric Scott: "Re(OT): Iptables action Return; Resolved 'automatic 'Static routes - Thanks"

    Relevant Pages

    • Re: Novice - Yeah, see my SEE SEE
      ... primitives, how do you redefine the primitive in terms ... The words execute faster ... I'm better at assembler than Forth;-) ... First entry: Pointer to previous word in the dictionary ...
      (comp.lang.forth)
    • Query regarding cron jobs
      ... I have a file created in /etc/cron.d which has an entry which execute a ... But due to some reason it is not getting executed and the entry is still ... and/or attachments to it are strictly prohibited. ...
      (RedHat)
    • Re: Novice - Yeah, see my SEE SEE
      ... primitives, how do you redefine the primitive in terms ... The words execute faster ... I'm better at assembler than Forth;-) ... First entry: Pointer to previous word in the dictionary ...
      (comp.lang.forth)
    • Want telnetd to execute different program than default (/bin/login)
      ... I would like my fedora core 1 system to execute a program other than ... When I change the entry in /etc/xinetd.d/telnet to furnish the command ... I got this error message: ... I tried enclosing the server argument in quotes: ...
      (comp.os.linux.misc)