This works great.
Sven Schuster wrote:
Hi David,
On Sat, Feb 07, 2004 at 12:51:33PM +0200, David Harel told us:
Hi all,
I tried a command:
$IPTABLES -A OUTPUT -p TCP -i $LAN_IFACE -s $LAN_IP_RANGE --dport smtp -j DROP
but it did nothing.
This will only stop traffic generated on your gateway. To stop traffic going _through_ the gateway you will need to put this rule in the FORWARD rule instead of OUTPUT, so replace OUTPUT with FORWARD, you might try something like this:
$IPTABLES -A FORWARD -p tcp --dprt 25 -i $LAN_IFACE -o $EXT_IFACE \ -j REJECT --reject-with tcp-reset
HTH
Sven
What can I do to block those messages sending attempts?
-- Thanks.
David Harel,
-- Thanks.
David Harel,
==================================
Home office +972 4 6921986 Fax: +972 4 6921986 Cellular: +972 54 534502 Snail Mail: Amuka D.N Merom Hagalil 13802 Israel Email: hareldvd@xxxxxxxxxxxxxxxx