--=-hoo7I8US0nply21isvrS Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Wed, 2002-11-13 at 17:50, Rob Sterenborg wrote: > > Is there a way to put time restrictions on rules? > > For eaxmple, something like: > > > > iptables -A FORWARD -i eth0 -p tcp -sport 1024: -dport 1024: -time > > 0700:1700 -j DROP >=20 > There is a time patch in pom (base). >=20 OK. Thanks I'll check it out. > >From the website : > This option adds CONFIG_IP_NF_MATCH_TIME, which supplies a time match > module. > This match allows you to filter based on the packet arrival time > (arrival time at the machine which the netfilter is running on) or > departure time (for locally generated packets). >=20 >=20 > Rob --=20 --=-hoo7I8US0nply21isvrS Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.7 (GNU/Linux) iD8DBQA90pGLh1fuR/Bv+ygRAj6YAJ9KLunUYY8U53d+c13i80FLbM8jAACghnLu ReAi2Ax7vCgFNYxxeZQXaFY= =LdF7 -----END PGP SIGNATURE----- --=-hoo7I8US0nply21isvrS--
