On Tue, 2 Mar 2004, Carl Parrish wrote:

> This is the voodoo I'm trying now. Can anyone let me know if I'm on the
> right track?
>
> iptables -A FORWARD -i $IPADDRESS -p tcp --sport 25 --dport 25 -j DROP
>
> iptables -A OUTPUT -o $IPADDRESS -p tcp --sport 25 --dport 25 -j DROP

Normally, you'd use -i and -o with interfaces (and use -s or -d with IP
addresses).

The source port would not (usually) be port 25 so get rid of "--sport 25".

OUTPUT is for packets coming from the box. FORWARD is for packets routed
from outside through the box.

   Jeremy C. Reed
   http://www.reedmedia.net/

---------------------------------------------------
PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us
To subscribe, unsubscribe, or to change  you mail settings:
http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss