-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
... �n data de Tue, 23 Jul 2002 Mircea Pilat a povestit:
> Cum se poate scrie o regula de genul:
>
> -A PREROUTING -d ! {192.168.0.1, 10.0.0.1, 193.231.121.221,...} -i eth0 -p
> tcp -m tcp --dport 80 -j REDIRECT --to-port 3128
> (redirectionare catre squid toate IP-uri-le mai putin o lista de IP-uri)
cat fisier cu toate acele adrese|while read ceva
regula
done
cred ca e cea mai buna solutie ... eu oi folosesc asa:
cat "$DENIED_HOSTS_FILE_TCP"|while read DHTSTCP
do
$IPT -A INPUT -j DENHTS -i eth1 -s $DHTSTCP -d 0/0 -p TCP
$IPT -A OUTPUT -j DENHTS -o eth1 -s $DHTSTCP -d 0/0 -p TCP
$IPT -A FORWARD -j DENHTS -s $DHTSTCP -d 0/0 -p TCP
done
unde:
$DENIED_HOSTS_FILE_TCP=fisier de forma:
ip1
ip2
DHTSTCP=variabila care contine o linie din $DENIED_HOSTS_FILE_TCP
Simplu ca buna ziua, ;-P
Cosmin
- --
NetAdm at "Alexandru Papiu Ilarian" Highschool Dej
e-mail: <[EMAIL PROTECTED]> LRU: #192084
phone: +40-264.211.421 int 25 +40-723.514.225
It's nice to be important
But is more important to be nice
- ---
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)
iD8DBQE9PVJvO/amHy4sVxcRArL5AJ0WpdtoxW3g8lZfp2vrBFaW7R/dWgCgqI8J
vkYHJ2ZnC+fHyEC8zprcq+k=
=i7cq
-----END PGP SIGNATURE-----
---
Pentru dezabonare, trimiteti mail la
[EMAIL PROTECTED] cu subiectul 'unsubscribe rlug'.
REGULI, arhive si alte informatii: http://www.lug.ro/mlist/
