Are you sure you're not mixing ipfwadm and ipchains syntax there, Bernd? If you want logging turned on with the '-o' option, that's ipfwadm. In ipchains you need to use '-l'. Minor correction.
Regards
Tobias
-----Original Message-----
From: Bernd Eckenfels [SMTP:[EMAIL PROTECTED]]
Sent: Friday, March 17, 2000 10:53 PM
To: Mikael Schmidt
Cc: Jon Earle; [EMAIL PROTECTED]
Subject: Re: ip-masq in linux showing internal ip
First of all this has to be at the top of your output ruleset and it should
deny every wrong package:
... all your normal ipchains rules
ipchains -I output -i eth1 -S ! 1.2.3.4 -D 0/0 -j DENY -o
This will deny all packets which are not coming from your official IP
Address 1.2.3.4
Greetings
Bernd
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
