saki <sakimumustafa@xxxxxxxxx> writes: > I want to block traffic from host 10.0.1.3 to > www.yahoo.com through my Gateway server. > > I implimented this command : > #iptables -A FORWARD -o eth0 -s 10.0.1.3 -d > www.yahoo.com -j DROP > But could not block traffic. Any idea? www.yahoo.com has several IP addresses which are served in a round-robin manner. The above rule will only block traffic to the particular IP address which was returned when the rule was entered. It will not block any of the others.