Mailing List Archive
Support open source code!
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: IPChains rules
- To: tlug@example.com
- Subject: Re: IPChains rules
- From: "Scott M. Stone" <sstone@example.com>
- Date: Fri, 2 Mar 2001 09:52:23 -0800 (PST)
- Content-Type: TEXT/PLAIN; charset=US-ASCII
- In-Reply-To: <3A9F6526.8D61A812@example.com>
- Reply-To: tlug@example.com
- Resent-From: tlug@example.com
- Resent-Message-ID: <vRJQxB.A.sqC.S59n6@example.com>
- Resent-Sender: tlug-request@example.com
On Fri, 2 Mar 2001, A.Sajjad Zaidi wrote: > But if I do something like this: > > ipchains -A input -b -s 99.99.99.99 -d 88.88.88.88 ! 21:22 -p tcp -j DENY > ipchains -A input -b -s 99.99.99.99 -d 88.88.88.88 ! 80 -p tcp -j DENY > > it blocks everything. > > You dont mean a seperate deny rule for every unwanted port do you? That'll be > a pain. you're going about it wrong. first make a rule to deny EVERYTHING, then make rules to *allow* only the ports that you want. > > > > "Stephen J. Turnbull" wrote: > > > >>>>> "A" == A Sajjad Zaidi <sajjad@example.com> writes: > > > > A> Im trying to setup rules through IPChains so everything except > > A> a few services are blocked. The problem is that only one port > > A> or a range of ports can be specified. Is there a work around > > A> for this? > > > > Specify the same rule multiple times, once for each port range. > > > > -- > > University of Tsukuba Tennodai 1-1-1 Tsukuba 305-8573 JAPAN > > Institute of Policy and Planning Sciences Tel/fax: +81 (298) 53-5091 > > _________________ _________________ _________________ _________________ > > What are those straight lines for? "XEmacs rules." > > > > ----------------------------------------------------------------------- > > Next Technical Meeting: Prof. Jim Breen Sat, March 10 13:30- > > Next Nomikai Meeting: Fri, April 13 19:30- Tengu Tokyo Eki Mae > > ----------------------------------------------------------------------- > > more info: http://www.tlug.gr.jp Sponsor: Global Online Japan > > ----------------------------------------------------------------------- > Next Technical Meeting: Prof. Jim Breen Sat, March 10 13:30- > Next Nomikai Meeting: Fri, April 13 19:30- Tengu Tokyo Eki Mae > ----------------------------------------------------------------------- > more info: http://www.tlug.gr.jp Sponsor: Global Online Japan > > > -------------------------- Scott M. Stone <sstone@example.com> Cisco Certified Network Associate, Sun Solaris Certified Systems Administrator UNIX Systems and Network Engineer Taos - The SysAdmin Company
- Follow-Ups:
- Re: IPChains rules
- From: "A.Sajjad Zaidi" <sajjad@example.com>
- Re: IPChains rules
- References:
- Re: IPChains rules
- From: "A.Sajjad Zaidi" <sajjad@example.com>
- Re: IPChains rules
- Prev by Date: Re: IPChains rules
- Next by Date: Re: IPChains rules
- Prev by thread: Re: IPChains rules
- Next by thread: Re: IPChains rules
- Index(es):
| Home Page | Mailing List | Linux and Japan | TLUG Members | Links |