RE: network range

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

> > How do you specifiy more than one netwrk range in a rule, is it 
> > possible?


> > i want to do the following:
> > iptables -A INPUT -s -j DROP

You can't ;).

> How can i create a chaine and a rule that will block all the 
> non routed network ranges from entering the network from the 
> external interface incase someones trying to spoof you?

Like this :

iptables -N spoof
iptables -A spoof -i <if_inet> -s -j DROP
iptables -A spoof -i <if_inet> -s -j DROP

iptables -A INPUT -j spoof
iptables -A FORWARD -j spoof


[Linux Netfilter Development]     [Linux Kernel Networking Development]     [Linux Networking Development]     [Linux Kernel Development]     [Linux Resources]     [LARTC]     [Bugtraq]     [Consulting]     [Free Internet Dating]     [Yosemite Forum]     [Photo]

Add to Google Powered by Linux