iptables

ANyone using iptables under Linux as a whitelist filter?

For example,

iptables -A INPUT -t filter -s ! 208.201.239.36 -p tcp --dport 23 -j DROP

what else do I need to do to make that work?

Reply to
Rick Merrill
Loading thread data ...

Lot's of people

OK - what is the matter with changing that to be an ALLOW, and having the default rules set to DENY as they should be? Alternately, ALLOW that address and port, and _then_ DENY the port in a later rule.

formatting link
[TXT] netfilter-extensions-HOWTO.txt 24-Dec-2006 16:06 79K [TXT] networking-concepts-HOWTO.txt 24-Dec-2006 16:06 28K [TXT] packet-filtering-HOWTO.txt 24-Dec-2006 16:06 52K

That's actually where '

formatting link
'redirects to now. The documents are a bit older than that. You can also look at the various HOWTOs that should be part of your system - the "Security-Quickstart-HOWTO" gives a very good set of explanations.

Old guy

Reply to
Moe Trin

Thanks for the tips!

Reply to
Rick Merrill

Cabling-Design.com Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.