Thank you Tom for the clarification. I thought that eth0 means the main IP for that interface, but I guess I am wrong. So if I want to block some IPs from all external IPs, then blocking from interface eth0 would do. Correct?
----- Original Message ----- From: "Tom Eastep" <[EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]>> To: <[EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]>> Sent: Sunday, January 05, 2003 5:37 PM Subject: Re: [leaf-user] Blacklist in Shorewall (Bering) > > > --On Sunday, January 05, 2003 04:51:57 AM -0500 Binh Do <[EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]>> > wrote: > > > Is it possible to black list some IPs on an alias interface, for example, > > eth0:0? > > Shorewall never has, doesn't and will never support the arcaic notion of > alias devices (e.g., "eth0:0") _in any context_. > > If you are asking "Is it possible to black list some IPs only when they are > trying to access a particular external IP address on my firewall?" then the > answer is also no. You must use rules for that. > > -Tom > -- > Tom Eastep \ Shorewall - iptables made easy > Shoreline, \ <http://shorewall.sf.net> > Washington USA \ [EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]> > > ------------------------------------------------------- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
