Hello
i wish the windows machine which receives Internet from the firewall pc
to be restricted fully apart from the port needed to access the internet
the windows machine has got fully access when my rc.firewall contains
$iptables -A FORWARD -i $LAN_IFACE -j ACCEPT
which gives to the windows machine access to every port
i've tried unsuccesully the following command
$iptables -A FORWARD -p TCP -i $LAN_IFACE -- sport XX -j ACCEPT
my netstat on the windows machine displays various connections
few questions now
1 which port should be alolwed for the windows machine to see internet
2 can i restrct it to something like :
$iptables -A FORWARD -p TCP -i $LAN_IFACE -sport XX -dport XX -j ACCEPT
in other words, allow the windows relevant port for accesing on the
internet to
be connected to the specific port of the firewall
regards
