Reverse the order -----Original Message----- From: Remus [mailto:rmocius@xxxxxxxxxxxxxx] Sent: Thursday, July 03, 2003 1:44 PM To: netfilter@xxxxxxxxxxxxxxxxxxx Subject: DROP command Hi folks, I have a Linux box firewall (iptables 1.2.7a) with NAT/MASQUERADING. How I can block all local network access to my firewall excluding some local IP addresses? I tried these command but it doesn't work: /usr/local/sbin/iptables -A INPUT -i eth2 -s 10.105.105.0/24 -j DROP /usr/local/sbin/iptables -A INPUT -i eth2 -s 10.105.105.20 -j ACCEPT Thank you in advance Remus
