----- Original Message ----- > From: "vivek chalotra" <[email protected]> > To: "Henrique Junior" <[email protected]> > Cc: "Konstantin Olchanski" <[email protected]>, > [email protected] > Sent: Friday, 5 October, 2012 9:10:24 AM > Subject: Re: Iptable rule required to block youtube > > I have blocked youtube(ips from 74.125.236.0- 74.125.236.14) in my > gateway machine using the below rules: > > iptables -A INPUT -i eth1 -s 74.125.236.0 -j DROP > iptables -A INPUT -i eth1 -p tcp -s 74.125.236.0 -j DROP > iptables -A INPUT -i eth0 -s 74.125.236.0 -j DROP > iptables -A INPUT -i eth0 -p tcp -s 74.125.236.0 -j DROP
> but how to block on the whole network. Other hosts are still able to > access youtube. With "whole network", do you mean your local LAN which your firewall (this SL box you're configuring) controls? If so, you should probably add those DROP rules to the FORWARD chain and not the INPUT chain. See this URL for more info: <http://www.netfilter.org/documentation/HOWTO//packet-filtering-HOWTO-6.html> kind regards, David Sommerseth
