On 28-Oct-2000 Peter Jay Salzman wrote: > dear all, > > i'm compiling portsentry on my system which has a 2.4.0-test9 kernel. > > when i compiled the kernel, i didn't see an ipchains options; it seems to > have been replaced by something called netfilter. > > just to make sure -- did i simply not see ipchains or was it really replaced > by netfilter?
It is possible to keep using ipchains by compiling the appropriate kernel module. I was using it until I got iptables working. > > i'd like to learn how to drop packets coming from a particular host -- is > there a netfilter howto yet? i didn't see anything on LDP. There is one on Debiandiary (or a link to one) and there are some ready-made iptables scripts. -- Andrew
