[conspire] quick firewall question

Ruben Safir ruben at mrbrklyn.com
Thu Aug 26 05:24:33 PDT 2010


Let me rephrase the question.

I can do something like 

iptables -A OUTPUT -p tcp –dport 8080 -j DROP

or 

iptables -A OUTPUT -p tcp -d 173.194.33.83 –dport 8080 -j DROP

for blocking 8080 for gmail.  How can I do that only for traffic coming
from eth1 which is the internal network which sits on the 192.0.0.0
network and wherefor not affecting my server dameons from having clean
access to the outside world?

Ruben

-- 
http://www.mrbrklyn.com - Interesting Stuff
http://www.nylxs.com - Leadership Development in Free Software

So many immigrant groups have swept through our town that Brooklyn, like Atlantis, reaches mythological proportions in the mind of the world  - RI Safir 1998

http://fairuse.nylxs.com  DRM is THEFT - We are the STAKEHOLDERS - RI Safir 2002

"Yeah - I write Free Software...so SUE ME"

"The tremendous problem we face is that we are becoming sharecroppers to our own cultural heritage -- we need the ability to participate in our own society."

"> I'm an engineer. I choose the best tool for the job, politics be damned.<
You must be a stupid engineer then, because politcs and technology have been attached at the hip since the 1st dynasty in Ancient Egypt.  I guess you missed that one."

© Copyright for the Digital Millennium




More information about the conspire mailing list