Thankyou all for your reponses On my bridge box I did what you all suggested
iptables -A FORWARD -j DROP Here is what iptables -L shows me Chain INPUT (policy ACCEPT) target prot opt source destination Chain FORWARD (policy ACCEPT) target prot opt source destination DROP all -- anywhere anywhere Chain OUTPUT (policy ACCEPT) target prot opt source destination However I am still able to ping from my laptap on eth1 to yahoo.com I am also able to ping my laptop from other subnets as well. Any other suggestion would be very helpful Thankyou friends Fazal Lennert Buytenhek wrote: > > On Wed, Jan 30, 2002 at 05:53:05PM -0500, Lookman Fazal wrote: > > > I thought by doing iptables -A INPUT -j DROP will block everything. I > > got this from the FIREWALL file in your doc directory > > <quote> > Now if you boot with this kernel, you can use the regular iptables > firewalling as if you were doing routing. So, rules for forwarding are > added to the FORWARD chain, rules for input to the local machine are > added to the INPUT chain, etc. > </quote> _______________________________________________ Bridge mailing list [EMAIL PROTECTED] http://www.math.leidenuniv.nl/mailman/listinfo/bridge
