> I haver private network and I need denied access to web or
> navegation for
> some workstation, I used:
>
> ipchains -I input -p tcp -s 172.16.0.24 -d 0.0.0.0 80 -j deny
>
> ipchains -I input -p tcp -s 172.16.0.24 -d 0.0.0.0 3128 -j deny
>
> Where 172.16.0.24 is the workstation of net private, but this no
> work
>
Try the following:
* Replace the destination, which is currently 0.0.0.0, with 0/0.
* The action needs to be capitalized, i.e. it's DENY instead of deny.
That should do the trick for all web servers listening on ports 80 and 3128,
but it won't help at all for HTTPS (port 443) and all those web servers
listening on ports 1024+.
HTH
Tobias
_______________________________________________
Firewalls mailing list
[EMAIL PROTECTED]
http://lists.gnac.net/mailman/listinfo/firewalls
