iptables question

Nicholas Leippe nick at leippe.com
Mon Nov 3 12:43:49 MST 2008

On Monday 03 November 2008 11:35:13 am Mike Lovell wrote:
> iptables -A FORWARD -s -d -j ACCEPT
> <repeated a few times of ip addresses to white list>
> iptables -A FORWARD -s -d -j DROP


iptables -A FORWARD -s -j DROP

(w/o the -d

Or, for an even better setup, just change the default policy on the FORWARD 
chain itself:

iptables -P FORWARD DROP

(you'll need to explicitly set up all your allowed connections first)


More information about the PLUG mailing list