Le mercredi 21 février 2007 à 07:08 -0500, Yakov Lerner a écrit : > Is there an easy way to specify '-s LOCAL', meaning > not 127.0.0.1, but meaning that address matches any of > addresses of interfaces belonging this this machine ? All locally generated packets cna be filtered in OUTPUT chain, nowhere else. That's a pretty convenient way to spot them. The same idea goes to packets destined to local addresses, that end in INPUT chain, nowhere else. -- http://sid.rstack.org/ PGP KeyID: 157E98EE FingerPrint: FA62226DA9E72FA8AECAA240008B480E157E98EE >> Hi! I'm your friendly neighbourhood signature virus. >> Copy me to your signature file and help me spread!
