From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org) by nuthatch.gentoo.org with esmtp (Exim 4.54) id 1FOFqe-0003K4-V4 for garchives@archives.gentoo.org; Tue, 28 Mar 2006 15:11:09 +0000 Received: from robin.gentoo.org (localhost [127.0.0.1]) by robin.gentoo.org (8.13.6/8.13.5) with SMTP id k2SF9gNR027875; Tue, 28 Mar 2006 15:09:42 GMT Received: from smtp2.iway.na (smtp2.iway.na [196.44.136.4]) by robin.gentoo.org (8.13.6/8.13.5) with ESMTP id k2SEw5kA029158 for ; Tue, 28 Mar 2006 14:58:06 GMT Received: from vscan.iway.na ([196.44.136.13]) by smtp2.iway.na (Netscape Messaging Server 4.15) with ESMTP id IWUEWL01.T13 for ; Tue, 28 Mar 2006 16:57:57 +0200 Received: from mx2.iway.na (localhost [127.0.0.1]) by vscan.iway.na (Postfix) with ESMTP id 68B0A1B018 for ; Tue, 28 Mar 2006 16:58:03 +0200 (WAST) Received: from uwix.alt.na ([196.44.156.222]) by mx2.iway.na (Netscape Messaging Server 4.15) with ESMTP id IWUEWR02.S0I for ; Tue, 28 Mar 2006 16:58:03 +0200 Received: from uwe by uwix.alt.na with local (Exim 4.60) (envelope-from ) id 1FOFHn-0006Ps-Ky for gentoo-user@lists.gentoo.org; Tue, 28 Mar 2006 16:35:07 +0200 From: Uwe Thiem Organization: SysEx (Pty) Ltd. To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] iptables question Date: Tue, 28 Mar 2006 16:35:07 +0200 User-Agent: KMail/1.9.1 References: In-Reply-To: Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Content-Disposition: inline Message-Id: <200603281635.07508.uwix@iway.na> Sender: Uwe Thiem X-Archives-Salt: dae9df4f-d6ac-42de-8fac-aa48c1f1dd7d X-Archives-Hash: 0a682ed1bc2d7e67f2db0a83e1bc954b On 28 March 2006 15:38, Hiren Dave wrote: > Hi, > > I want to configure firewall such that network 192.168.1.0/24 can > only access http server from server1(192.168.0.2/24) and > network 192.168.0.0/24 can not access http server. So I tried this: > > #service iptables stop > #iptables -P INPUT DROP > #iptables -t filter -A INPUT -s 192.168.1.0/24 --dport 80 -j ACCEPT > > But this command sends error that "Unknown arg: --dport" > HOW CAN I ACHIEVE THIS? Iptables is right, that line is nonsense. > > ALSO IS THERE ANY BOOKS OR ONLINE DOCUMENTS FOR PRACTICALLY LEARNING OF > IPTABLES? I don't have the URL handy right now, but google for "Iptables Tutorial 1.2.0". Uwe -- Why do consumers keep buying products they will live to curse? -- gentoo-user@gentoo.org mailing list