I'd set my iptables to something like: # Drop _all_ packets iptables -t filter -P FORWARD DROP # Allow http iptables -t filter -A FORWARD -p tcp -m tcp --dport 80 -j ACCEPT # Many more rules here to allow all the other s41t. ----- Original Message ----- From: "gbj" <gbj@xxxxxxxxxx> To: <netfilter@xxxxxxxxxxxxxxxxxxx> Sent: Sunday, June 15, 2003 18:16 Subject: filter p2p > hello everyone,I have a lan with a gateway iptables firewall,and I don't want the user on the lan use P2P software like e-donkey ,because I think it's will led to some administration proplem.but I don't know how to setup iptables rules to archieves this goal,does anybody has the same experience? > > > > > > sword > > >
