/* HINT: Search archives @ http://www.indyramp.com/masq/ before posting! /* ALSO: Don't quote this header. It makes you look lame :-) */
On Wed, 27 Mar 2002 18:55:52 +0100 "THE CROW" <[EMAIL PROTECTED]> wrote: > iptables -P INPUT DROP > iptables -A INPUT -i $EXTIF -s 0.0.0.0/0 -d $EXTIP -p tcp --dport ** -j DROP > > I put the stars (**) only 'cause I don't like to reveal information about my > lan. > > $EXTIF is the external interface (eth1) > $EXTIP is the ip address of my dialup connection (ppp0) (snip) > Anybody know what's goin' on ? Looks to me like you're mixing IPs and interfaces. If the external IP is on ppp0, the interface you want to test for is ppp0 not eth1. However, if all you are concerned with is connections to that port on that IP drop the condition of interface. Jamin W. Collins _______________________________________________ Masq maillist - [EMAIL PROTECTED] Admin requests can be handled at http://www.indyramp.com/masq-list/ -- THIS INCLUDES UNSUBSCRIBING! or email to [EMAIL PROTECTED] PLEASE read the HOWTO and search the archives before posting. You can start your search at http://www.indyramp.com/masq/ Please keep general linux/unix/pc/internet questions off the list.
