help iptables-rules, plz
rossonieri#1
Member Posts: 799 ■■■□□□□□□□
in Linux+
dear all,
i need to know does iptables do the inverse opr?
like this :
policy input accept
policy output accept
policy forward accept
and now :
iptables -A INPUT -i eth0 -s 10.1.1.1/32 -d 10.1.1.0/24 -p tcp --dport 139 -j ACCEPT
so how you evaluate this rule? does it allow any tcp?
many thanks for the help
i need to know does iptables do the inverse opr?
like this :
policy input accept
policy output accept
policy forward accept
and now :
iptables -A INPUT -i eth0 -s 10.1.1.1/32 -d 10.1.1.0/24 -p tcp --dport 139 -j ACCEPT
so how you evaluate this rule? does it allow any tcp?
many thanks for the help
the More I know, that is more and More I dont know.
Comments
-
bmack1082
Member Posts: 4 ■□□□□□□□□□
rossonieri#1 wrote:dear all,
i need to know does iptables do the inverse opr?
like this :
policy input accept
policy output accept
policy forward accept
and now :
iptables -A INPUT -i eth0 -s 10.1.1.1/32 -d 10.1.1.0/24 -p tcp --dport 139 -j ACCEPT
so how you evaluate this rule? does it allow any tcp?
many thanks for the help
That rule will allow the IP 10.1.1.1 incoming to your firewall to connect to any ip in the network of 10.1.1.0/24 over tcp139 (netbios session).
However, if that is your only rule, all other traffic will be allowed as well since your default input policy is allow -
rossonieri#1
Member Posts: 799 ■■■□□□□□□□
hello bmack,
thanks for the reply : )
done with iptables : )
but now - i'm facing a new problem : bandwidth management with HTB-tools - it seems doesnt works for me to limit/drop downloads from clients using download accelerator.
some said it has to be combined with squid - some didnt..
any suggestions?
cheers...the More I know, that is more and More I dont know.