Amit, > i use > > iptables -t nat -A POSTROUTING -o eth1 -j MASQUERADE > > to allow my linux box to act as gateway for my local > windows system amd access internet. > > it works fine. > > how can i restrict the same thing for a specific > ipaddress(es) only. > > expample my linux box should act as gateway only to > say 192.168.1.10 and none other systems on my network.
Something like: iptables -t nat -P POSTROUTING DROP iptables -t nat -A POSTROUTING -o eth1 -s 192.168.1.10 -j MASQUERADE Remember, there are *many* possible variations to achieve this result. Hope this helps, -Varun -- Mindframe Software & Services Pvt. Ltd., A-50, Sector-39, NOIDA, U.P. - 201301, India http://www.mindsw.com _______________________________________________ ilugd mailing list [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd