Op donderdag 19 juni 2003 01:51, schreef Pascal Italiaander: > You wrote: > > Does anyone know of a way to make say all connections from the outside > > going to my outside IP address Appear to be coming from my local lan of > > 192.168.0.1 > > Did you know that this is spoofing ?? > > So you want to allow spoofing , bad idea. > > To aproach your problem, I would rather match on MAC address. > > example: > > iptables -I INPUT -p all -m mac --mac-source 10:20:30:40:05:06 -m \ > state state NEW -j ACCEPT > iptables -I OUTPUT -p all -m state ESTABLISHED,RELATED -j ACCEPT > > have fun > > Pascal small errors were in it, fixed: iptables -I INPUT -p all -m mac --mac-source 10:20:30:40:05:06 -m \ state --state NEW -j ACCEPT iptables -I OUTPUT -p all -m state --state ESTABLISHED,RELATED -j ACCEPT Pascal
