ads nat wrote:
I am implimenting iptables for first time.
I want to allow all my LAN users to send emails to SMTP (port no. 25) all destination with following code. :
***
iptables -A FORWARD -p tcp --dport 25 -j ACCEPT
***
That looks fine. If you want to test a specific rule, replace ACCEPT with LOG and test it. Use --log-prefix to identify these entries. In your case:
iptables -A FORWARD -p tcp --dport 25 -j LOG --log-prefix "dport_25_packet: "
I also want to allow LAN users having ip 192.168.0.42 192.168.0.23 to upload contents to webserver on ip 207.106.22.35 (outside of LAN) with following code.
***
iptables -A FORWARD -p tcp -s 192.168.0.42 192.168.0.23 -d 207.106.22.35 --dport 80 -j ACCEPT
***
I would loke know whether It works or not.
Tell me whether my code is O.K. also where can i check logs.
iptables uses the kernel system log. In my Redhat system that can be found as /var/log/messages.
Thanks
------------------------------------------------------------------------
Do you Yahoo!?
Yahoo! SiteBuilder <http://us.rd.yahoo.com/evt=10469/*http://sitebuilder.yahoo.com> - Free, easy-to-use web site design software
