Preston Crawford wrote: > Is there an easy way to reject all incoming packets except those that > come from certain IPs? I can't find any way via iptables or via the GUI See this great iptables example: http://oceanpark.com/notes/firewall_example.html In your case it'll be a whole lot simpler, all you'll need are the initial drop rules for all traffic, then a rule or two to allow XYZ ip in. -te pseudo: iptables -P INPUT DROP iptables -P OUTPUT ACCEPT iptables -F INPUT iptables -F OUTPUT iptables -A INPUT -i eth0 -m state --state ESTABLISHED,RELATED -j ACCEPT # your IPs below iptables -A INPUT -i eth0 -s x.y.z.s/32 -j ACCEPT -- Troy Engel | Systems Engineer Fluid, Inc | http://www.fluid.com
Easy way to reject all incoming packets except from certain IPs?
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- Subject: Easy way to reject all incoming packets except from certain IPs?
- From: tengel at fluid.com (Troy Engel)
- Date: Wed Feb 1 00:38:20 2006
- In-reply-to: <3ab79fbc0601311445l560e1db1w66ced32167dee63a@xxxxxxxxxxxxxx>
- References: <3ab79fbc0601311445l560e1db1w66ced32167dee63a@xxxxxxxxxxxxxx>
- Follow-Ups:
- Easy way to reject all incoming packets except from certain IPs?
- From: Preston Crawford
- Easy way to reject all incoming packets except from certain IPs?
- References:
- Easy way to reject all incoming packets except from certain IPs?
- From: Preston Crawford
- Easy way to reject all incoming packets except from certain IPs?
- Prev by Date: OT - Linux NAS for Windows Environment
- Next by Date: custom vnc install disk [dnk]
- Previous by thread: Easy way to reject all incoming packets except from certain IPs?
- Next by thread: Easy way to reject all incoming packets except from certain IPs?
- Index(es):
 |