Usually, you have to specify the interface. For example, I run a caching-only nameserver on my firewall that I don't want anyone to be able to query from outside the firewall, so I run this command: iptables -A INPUT -i eth0 -p tcp --dport 53 -j DROP Hope that syntax helps. Might also want to check out these links: http://www.xthorsworld.com/rc.firewall http://www.xthorsworld.com/index.php?cat=Articles&Page=2 On Mon, 23 Dec 2002, JUSTIN GERRY wrote: > I am attempting to create a iptables firewall for a server with two > ethernet cards/two ip addresses. It is just your average webserver that > has two domain names/webpages in it (virtual hosting with Apache). > > I can get iptables to work with one ip address, but not the 2nd one. It > seems to ignore the request sent to a 2nd ip address. > > If anyone has some general examples that they would not mind sharing > with me drop me a note. > > Many thanks, > Justin > > > > -- -------- Ben Brown xthor@xthorsworld.com http://www.xthorsworld.com/ -- Psyche-list mailing list Psyche-list@redhat.com https://listman.redhat.com/mailman/listinfo/psyche-list
