iptables filtering ****ts under nat

by "Luis Rondon Paz" <luis@[EMAIL PROTECTED] > Oct 17, 2008 at 01:40 AM

hello everyone i have a question
i have this in my iptables

EXT_IF=eth1

#############
/sbin/iptables -t nat -A POSTROUTING -s 12.16.2.5 -o $EXT_IF -j MASQUERADE


now
how can i DROP ALL TRAFIC FROM IP 12.16.2.5 ??? exept ****t 80 to one
external ip ?

example

i neeed to drop all traffic
and  i need to allow the traffic to one address only

how can i do that Ç????


/sbin/iptables -t nat -A POSTROUTING -s 12.16.2.5 -d EXTERNALONEHOSTONLY
-o $EXT_IF -j  ACCEPT

/sbin/iptables -t nat -A POSTROUTING -s 12.16.2.5 -d 0.0.0.0/0 -o $EXT_IF
-j  DROP ???


OR SHOULD I NEED TO USE TO FORWARD ??

thanks for reading me .









-- 
To UNSUBSCRIBE, email to debian-firewall-REQUEST@[EMAIL PROTECTED]
 a subject of "unsubscribe". Trouble? Contact
listmaster@[EMAIL PROTECTED]

3 Posts in Topic:

iptables filtering ports under nat

"Luis Rondon Paz&quo

2008-10-17 01:40:08

Re: iptables filtering ports under nat

James Shupe <shupej@[E

2008-10-17 01:40:10

Re: iptables filtering ports under nat

Pascal Hambourg <pasca

2008-10-17 11:10:10

Post A Reply:

About - Advertising - Contact - Frequently Asked Questions - Privacy Policy - Terms of Use - Signup
localhost-V2008-12-19 Fri Jan 9 14:35:33 PST 2009.