I am trying to drop all port 80 traffic from going from source 10.1.0.1 to 192.168.0.1 My routing table in the router is as follows: Routing Table Destination Gateway Netmask Interface 192.168.1.0 0.0.0.0 255.255.255.0 vlan0 192.168.0.0 0.0.0.0 255.255.255.0 vlan1 10.1.0.0 0.0.0.0 255.255.255.0 tun0 0.0.0.0 192.168.0.1 0.0.0.0 vlan1 I tried to using the following; iptables -I FORWARD 1 -s 10.1.0.0/24 -d 192.168.0.1 -p tcp --dport 80 -j DROP however, the traffic still goes through on tun0 I tried iptables -I FORWARD 1 -d 192.168.0.1 -p tcp --dport 80 -j DROP and the vlan traffic gets block but not the tun0 any ideas what I'm doing wrong? thanks in advance for any help... - To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
