On Tue, 2003-05-06 at 04:37, John Guntenaar wrote: > Hi Joel, > > Your LAN construction is exactly what I want, but I want that 1 of the 4 > IPs can only bind to the 4th IP, but when I try any of your rules I get > errors :( > > (And yes, I changed the real IP in 123.123.123.123 in here ;-)) > > jimbo:/var/www# iptables -A OUTPUT -p tcp -s 123.123.123.123/32 -m owner > ! --uid-owner 1000 -j REJECT --reject-with tcp-reset > iptables: Invalid argument > > jimbo:/var/www# iptables -A OUTPUT -p tcp --dport 6667 -m owner ! > --uid-owner 1000 -j REJECT --reject-with tcp-reset > iptables: Invalid argument > > jimbo:/var/www# iptables -A OUTPUT -p tcp --dport 194 -m owner ! > --uid-owner \ 1235 -j REJECT --reject-with tcp-reset > iptables: Invalid argument > > So what could be wrong? My bet would be you don't have/haven't loaded ipt_owner... Try "insmod ipt_owner". j > Thanks, > > John
