On Tue, Mar 11, 2008 at 05:10:34PM -0300, Rodrigo Cortes wrote: > Hi!!!! > > I have he next question. I have some IP with full access with this rules > > ACCEPT lan:IP1,IP2,IP3 wan all - - > > How to block some destiny ports!? > You are going about this the hard way. However, a rule like this *BEFORE* the rule you list, would work:
REJECT:info lan:IP1 wan all a,b,c That would block IP1 from sending out traffic on ports a, b and c. Regards, -Roberto -- Roberto C. Sánchez http://people.connexer.com/~roberto http://www.connexer.com
signature.asc
Description: Digital signature
------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2008. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
