Re: port blocking

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Hello,

usually you can bind the webserver on a specific IP address (for apache
use BindAddress in httpd.conf). if not, use this iptables rule before
accepting packets on eth0, eth2, eth3, eth4:

iptables -A INPUT -p tcp -i ! eth1 --dport 10000 -j DROP

On Friday, March 25, 2005, 2:00:12 PM, Manish wrote:

> Hi,
 
> I am having 5 network inteface card on my server,  2 connected to
> ethernet and 3 connected to wireless. i am also running webserver on
> port 10000 in the same machine. I only wanted the users from eth1 to
> be able to connect to my web server. users from other interface i.e
> eth0, eth2.eth3 and eth4 will not be able to connect to my web
> server. What iptables rule should i use.
 
> Thanks.

		
> ---------------------------------
> Do you Yahoo!?
>  Yahoo! Mail - 250MB free storage. Do more. Manage less.



-- 
Best regards,
 Petrisor                            mailto:petry.b@xxxxxxxxx




[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux