On Tue, Nov 20, 2007 at 06:32:49PM +0200, alex wrote: > > alex wrote: > >> Please, help me. Can i forbid and how any outgoing traffic > >> (ping,trace) to rfc1918 networks on my external interfaces? > > > > /etc/shorewall/rules: > > > > REJECT net:10.0.0.0/8,172.16.0.0/12,192.168.0.0/16 all > > > > -Tom > > Thank you Tom. > But i want block traffic TO rfc1918 addresses (as destination) on > external interface (so as Internet have not them) but not from. > Your ISPs routers (unless misconfigured) will reject the packets even if they escape your network.
Regards, -Roberto -- Roberto C. Sánchez http://people.connexer.com/~roberto http://www.connexer.com
signature.asc
Description: Digital signature
------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2005. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
