netfilter
[Top] [All Lists]
<prev [Date] next>
<prev [Thread] next>
Try out TrashMail.net disposable email address service

Allow access trought a bridge

from [Hélio Dubeux]
Subject: Allow access trought a bridge
From: Hélio Dubeux
Date: Mon, 04 Nov 2002 13:09:14 -0200 
I Have a Bridge and CBQ on my net. I have to:

1 - Allow external access to some IP.
2 - Drop the non alloed IP.

I Gave an valid IP behind my bridge that i can´t access. This is my table:

iptables -P FORWARD DROP
iptables -A FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT
iptables -A FORWARD -p all -s <IP> -j ACCEPT
iptables -A FORWARD -m state --state ESTABLISHED,RELATED -j DROP
Whith these rulesets i got what i want, for example i can ping my router but i can´t ping an IP in the same range as my router tahat is behind the bridge. 

PLZ HELP ME.

----------------------
Hélio Dubeux Neto




_________________________________________________________________
MSN Hotmail, o maior webmail do Brasil. http://www.hotmail.com
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
  • Allow access trought a bridge, Hélio Dubeux <=
Previous by Date:  Re: -m string and RELATED, Arkadiusz Miskiewicz
Next by Date:  DNAT possible with the string module?, Udo Rader
Previous by Thread:  Re: Personal Firewall, Patrick Schaaf
Next by Thread:  DNAT possible with the string module?, Udo Rader
Indexes:  [Date] [Thread] [Top] [All Lists]