try this , #iptables -A FORWARD -i eth0 -o ppp0 --dport 25 -d !<ip addr of mail server> -j DROP don't forget to replace -i eth0 with your LAN inteface and -o ppp0 with your external interface On Tue, 28 Dec 2004 21:52:46 +0530, Vijay Kumar <vijay@xxxxxxxxxxxxxx> wrote: > Hi, > > I want to allow my internal network to only connect to some specific email > servers. > Apart from these mail server I want to block port 25 and 110 from my > internal network to anywhwere. I am doing the following : > > iptables -I INPUT -I eth0 --dport 25 -d !<ip addr of mail server> -j > REJECT > > This does not seem to block the port 25 traffic. Where am I going wrong? > > Kindly help. > > Regards, > Vijay Kumar > > > > -- (after bouncing head on desk for days trying to get mine working, I'll make your life a little easier)
