From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org) by nuthatch.gentoo.org with esmtp (Exim 4.54) id 1FOQRf-0000kL-Ee for garchives@archives.gentoo.org; Wed, 29 Mar 2006 02:30:03 +0000 Received: from robin.gentoo.org (localhost [127.0.0.1]) by robin.gentoo.org (8.13.6/8.13.5) with SMTP id k2T2T87K006550; Wed, 29 Mar 2006 02:29:08 GMT Received: from ms-smtp-04.tampabay.rr.com (ms-smtp-04.tampabay.rr.com [65.32.5.134]) by robin.gentoo.org (8.13.6/8.13.5) with ESMTP id k2T2OvO4004317 for ; Wed, 29 Mar 2006 02:24:57 GMT Received: from keelie.localdomain (151.179.121.70.cfl.res.rr.com [70.121.179.151]) by ms-smtp-04.tampabay.rr.com (8.13.4/8.13.4) with ESMTP id k2T2OtND015630 for ; Tue, 28 Mar 2006 21:24:56 -0500 (EST) Received: from keelie.localdomain (localhost.localdomain [127.0.0.1]) by keelie.localdomain (Postfix) with ESMTP id 24B5D3155 for ; Tue, 28 Mar 2006 21:24:55 -0500 (EST) Date: Tue, 28 Mar 2006 21:24:54 -0500 From: JimD To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] iptables question Message-ID: <20060328212454.6687d1b4@keelie.localdomain> In-Reply-To: References: X-Mailer: Sylpheed-Claws 2.0.0 (GTK+ 2.8.12; x86_64-pc-linux-gnu) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@gentoo.org Reply-to: gentoo-user@lists.gentoo.org Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Virus-Scanned: Symantec AntiVirus Scan Engine X-Archives-Salt: e871a29a-5999-4548-ba48-f2031da6aa31 X-Archives-Hash: bac22f8beea9a46a41a5846723938075 On Tue, 28 Mar 2006 19:08:38 +0530 "Hiren Dave" wrote: > Hi, > > I want to configure firewall such that network 192.168.1.0/24 can > only access http server from server1(192.168.0.2/24) and > network 192.168.0.0/24 can not access http server. So I tried this: > > #service iptables stop > #iptables -P INPUT DROP > #iptables -t filter -A INPUT -s 192.168.1.0/24 --dport 80 -j ACCEPT > > But this command sends error that "Unknown arg: --dport" > HOW CAN I ACHIEVE THIS? Because you need to put in a protocol like -p tcp. > ALSO IS THERE ANY BOOKS OR ONLINE DOCUMENTS FOR PRACTICALLY LEARNING > OF IPTABLES? http://www.google.com/search?q=iptables+howto -- gentoo-user@gentoo.org mailing list