Koozali.org: home of the SME Server

Legacy Forums => Experienced User Forum => Topic started by: draxx on September 28, 2004, 12:34:07 PM

Title: IPTABLES in SME 6.0
Post by: draxx on September 28, 2004, 12:34:07 PM

Hi All,
Ive been giving myself a hell of headache trying to come to grips with IPTABLES. With ipchains one could generally state:
sourecIP destinationIP port DENY/ACCEPT
I cannot find in any the documentations how to implement this (i.e: destination and source)in iptables.
Does anyone out there have some docs or advice on how to configure the iptables in SME 6.0???

Aargh!
Thanx

Title: IPTABLES in SME 6.0
Post by: briank on September 28, 2004, 01:21:11 PM

Search Google for the iptables Howto but this might help explain the differences
http://www.linuxguruz.com/iptables/howto/iptables-HOWTO-7.html
Regards
Brian

Title: IPTABLES in SME 6.0
Post by: gzartman on September 28, 2004, 06:36:33 PM

Or better yet, give this contrib a try:

http://no.longer.valid/mylinks/singlelink.php?cid=123&lid=372

I've not tried this contrib, it does look like it will simplify what you are trying to do.

Greg Zartman

Title: IPTABLES in SME 6.0
Post by: p_bruin on October 03, 2004, 10:04:12 PM

No, the rpm just gives you the possibility to say
PORT DENY/ACCEPT
I would like to expand this rule with the ability to accept a port only from a certain IP.
I have been looking all over to find this, but so far, no luck.
Does anyone have an idea?????

Title: IPTABLES in SME 6.0
Post by: arne on October 07, 2004, 01:09:13 AM

Its not more difficult with the iptables, but you don't say what kind of configuration you are running.

If it's a server gateway a mod of the firewall will very easy destroy the functionality of the existing firewall.

If it's a server only installation without a firewall, it's not very difficult to make a new firewall konfiguration with such a function.

(Actually it can be modified into the gateway seup also if its just to drop some source ip's)