HELLO GUYS
We have a website and we are redirecting our site data from a local
site... so that website request our purticular real ip on a 85 port
and it is redirected too our local IIS
by this we are redirecting our request
iptables -t nat -A PREROUTING -p tcp -m tcp --dport 85 -j DNAT
--to-destination 192.168.11.5
iptables -t nat -A PREROUTING -i eth0 -p tcp -m tcp --dport 85 -j DNAT
--to-destination 192.168.11.5
then i thought to block all the request except one, because someone
cracked into our servers...
so this is the rule
-A PREROUTING -p tcp -m tcp --dport 85 -s 208.43.17.250 -j ACCEPT
-A PREROUTING -p tcp -m tcp --dport 85 -s 0.0.0.0/0 -j DROP
then i read that there should be FORWARD rule, so i tried
iptables -A FORWARD -p tcp -m tcp --dport 85 -s 0.0.0.0/0 -j DROPbut
it didnt worked out.. please check and tell where was i wrong...
