> >
> > > yup i used this one... even used these
> > >
> > > ipchains -A forward -p tcp -s 0/0 -d 0/0 6661:7000 -j DENY
> > > ipchains -A output -p tcp -s 0/0 -d 0/0 6661:7000 -j DENY
> > > ipchains -A input -p tcp -s 0/0 -d 0/0 6661:7000 -j DENY
> >
> > the third line will do the job already
> >
>
> actually the third line works alone for linux boxes, i just put the first
> to try if it would work on windows boxes. but it still didn't.
>
this first line is actually the gateway rule. therefore the windows boxen
behind your linux box will be imposed this rule.
> > > and as i said, it works for linux boxes but windoze boxes seem to
> > > tunnel through my firewall and a portscan on the windoze box shows only
> > > the netbios port and it doesn't seem to register on netstat...
> > >
> > > any ideas
> > >
> >
> > are your windows boxes point their default gateway to your linux box?
> > if yes, is your linux box running socks? and the same time irc windows client
>pointing their proxy to your socks server?
> >
>
> yup, its the default gateway of the windows box, and nope, i'm not running
> socks. as i said, netstat doesn't show the ip of the windoze box even if
> the mirc windoze client is running. any ideas? thanks.
>
are you using masquerading for the windows boxen?
could you email the output of /sbin/ipchains --list -n
--------------------------------------
William Emmanuel S. Yu
Ateneo Cervini-Eliazo Networks (ACENT)
email : [EMAIL PROTECTED]
web : http://cersa.admu.edu.ph/
phone : 63(2)4266001-5925/5904
Confidence is simply that quiet, assured feeling you have before you
fall flat on your face.
-- Dr. L. Binder
_
Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph
To leave: send "unsubscribe" in the body to [EMAIL PROTECTED]
To subscribe to the Linux Newbies' List: send "subscribe" in the body to
[EMAIL PROTECTED]
