[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Sheflug] Iptables

To: shef-lug [at] xxxxxxxxxxxxxxxxxxx
Subject: [Sheflug] Iptables
From: Barrie Bremner <xxxxx [at] xxxxxxxxxxxxxxxxx>
Date: Fri, 3 May 2002 22:55:40 +0100
Envelope-to: <shef-lug [at] list.sheflug.org.uk>
List-help: <mailto:shef-lug-request [at] list.sheflug.org.uk?subject=help>
List-id: Sheflug <shef-lug.list.sheflug.org.uk>
List-post: <mailto:shef-lug [at] list.sheflug.org.uk>
List-subscribe: <http://community.uklinux.net/mailman/listinfo/shef-lug>,<mailto:shef-lug-request [at] list.sheflug.org.uk?subject=subscribe>
List-unsubscribe: <http://community.uklinux.net/mailman/listinfo/shef-lug>,<mailto:shef-lug-request [at] list.sheflug.org.uk?subject=unsubscribe>
Reply-to: shef-lug [at] xxxxxxxxxxxxxxxxxxx
Sender: shef-lug-admin [at] xxxxxxxxxxxxxxxxxxx

>>>>> "Richard" == Richard Ibbotson <richard [at] sheflug.co.uk> writes:

    Richard> Hi Can anyone tell me what's wrong with this iptables
    Richard> rule which allows web pages at port 80 ...

    Richard> iptables -A FORWARD -i eth0 -o ppp0 -p tcp
    Richard> -s 192.168.1.1/24 --sport 1024:65535 --dport 80
    Richard> -m state -state NEW -j ACCEPT

iptables -A FORWARD -i eth0 -o ppp0 \
-p tcp --dport 80 -m state --state \
NEW,RELATED,ESTABLISHED -j ACCEPT

or

iptables -A FORWARD -i eth0 -o ppp0 \
-p tcp --dport 80 -m state --state \
NEW,ESTABLISHED -j ACCEPT

Cheers.

Baz.
-- 
Barrie J. Bremner		OpenPGP public key ID: F78CEE08
baz [at] barriebremner.com	http://barriebremner.com/


___________________________________________________________________

Sheffield Linux User's Group -
http://www.sheflug.co.uk/mailfaq.html

  GNU the choice of a complete generation.

Follow-Ups:
- [Sheflug] Iptables
  - From: Barrie Bremner

References:
- [Sheflug] Iptables
  - From: Richard Ibbotson

Prev by Date: [Sheflug] Re: Network
Next by Date: [Sheflug] Iptables
Previous by thread: [Sheflug] Iptables
Next by thread: [Sheflug] Iptables
Index(es):
- Date
- Thread