On Fri, Jun 24, 2005 at 02:28:26PM +0300, Fatih D?zova wrote:
> Thank you! you are really great. I m sure I m getting make u bored
> with my questions due to being a newbie in iptables tool, but I wonder
> whether it could be done on a determined IP address or a port such as
> 80, instead of icmp packets?
> Thanks,
:-)
Surely.
(Have you ever read man iptables? Or any iptables tutorial? Would be very
helpful, really)
[-s source_addr]|[-d dest_addr] -p tcp [--sport www]|[--dport www]
instead of
--protocol icmp --icmp-type [echo-reply]|[echo-request]
To drop some packets which are going outside to remote www from local
machine:
# iptables -A OUTPUT \
-d <remote_IP> --dport www \
--match random --average 10 \
-j DROP
ps linux is great :-)
--
_,-=._ /|_/|
`-.} `=._,.-=-._., @ @._,
`._ _,-. ) _,.-'
` G.m-"^m`m' Dmytro O. Redchuk
_______________________________________________
LARTC mailing list
LARTC@xxxxxxxxxxxxxxx
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
