On 10/07/2010 07:57 AM, Jessie Morris wrote: > On 10/6/10 9:02 PM, Thara wrote: >> Guys, >> any idea how to block https port 443 and allow some specific sites on squid. >> Tnx > > Doing this would likely be a firewall thing, from the way you make it > sound. Something like: > > iptables -P input -p tcp --dport 443 -j DROP > iptables -P input -p tcp --dport 443 -s 127.0.0.1 -j ACCEPT
Your syntax is a little off. iptables -P sets the default policy. You probably wanted -A. iptables -A INPUT -p tcp --dport 443 -s 127.0.0.1 -j ACCEPT iptables -A INPUT -p tcp --dport 443 -j DROP No comment as to whether this will solve the OP's issue. I don't quite understand the question. Corey
signature.asc
Description: OpenPGP digital signature
/* PLUG: http://plug.org, #utah on irc.freenode.net Unsubscribe: http://plug.org/mailman/options/plug Don't fear the penguin. */
