[Wylug-help] simple iptables rule
John Hodrien
johnh at comp.leeds.ac.uk
Tue Feb 15 17:21:43 GMT 2005
On Tue, 15 Feb 2005, Gary Stainburn wrote:
> Hi folks.
>
> I've got a RH7.3+errata box with eth1 visible to the internet. eth0 is
> internal.
>
> What do I need to put where so that iptables limits access to eth1 to 1
> specifc IP address while not affecting eth0 at all.
iptables -i eth1 -s !specific.ip.add.ress -j DROP
iptables -o eth1 -d !specific.ip.add.ress -j DROP
That do it?
jh
--
"Big Brother doesn't have to watch us anymore because all we do is watch Big
Brother" -- Banksy
More information about the Wylug-help
mailing list