AV1611 Posted August 12, 2007 Share Posted August 12, 2007 I need to use iptables to drop any requests from 192.168.0.1-192.168.0.254 on port 80. (I want to force them to use squid so blocking port 80 I think is how I want to do it. I can't figure out how to make this work...??? HELP! [root@amdlinux ~]# iptables -A INPUT -p tcp -d 192.168.0.0/32 -d port 80 -j DROP iptables v1.3.7: multiple -d flags not allowed Link to comment https://forums.phpfreaks.com/topic/64558-iptables-problem/ Share on other sites More sharing options...
AV1611 Posted August 12, 2007 Author Share Posted August 12, 2007 I went with this, but how would I make an exception for a single ip? [root@amdlinux ~]# iptables -D INPUT -s 192.168.0.0/32 -p tcp --destination-port 80 -j DROP How would I allow, say 192.168.0.100 to be able to port 80 connect, but none of the above? Thanks Link to comment https://forums.phpfreaks.com/topic/64558-iptables-problem/#findComment-321812 Share on other sites More sharing options...
trq Posted August 12, 2007 Share Posted August 12, 2007 iptables -A INPUT -p tcp -d 192.168.0.100 --dport 80 -j ACCEPT iptables -A INPUT -p tcp -d 192.168.0.0/32 -dport 80 -j DROP Link to comment https://forums.phpfreaks.com/topic/64558-iptables-problem/#findComment-321934 Share on other sites More sharing options...
steviewdr Posted August 13, 2007 Share Posted August 13, 2007 A redirect iptables rule would be much better. Redirect all external requests on port 80 to 8080. iptables -t nat -A PREROUTING -p tcp -d 192.168.0.100 --dport 80 -j DNAT --to 192.168.0.100:8080 More info on iptable rules at: http://wiki.kartbuilding.net/index.php/Iptables_Firewall -steve Link to comment https://forums.phpfreaks.com/topic/64558-iptables-problem/#findComment-322218 Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.