From mboxrd@z Thu Jan 1 00:00:00 1970 From: =?ISO-8859-1?Q?Fatih_D=FCzova?= Date: Fri, 24 Jun 2005 12:02:16 +0000 Subject: Re: [LARTC] where s filtering done? Message-Id: <103339c805062405027f2e50bb@mail.gmail.com> List-Id: References: <103339c805062309076e092497@mail.gmail.com> In-Reply-To: <103339c805062309076e092497@mail.gmail.com> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit To: lartc@vger.kernel.org You saved my life!! I ve just read an iptables tutorial after I sent u the e-mail, and seen how wonderful it can be. I will use it in my project for a testing purpose on the queues created with htb. Thank you very much! FD On 6/24/05, Dmytro O. Redchuk wrote: > On Fri, Jun 24, 2005 at 02:28:26PM +0300, Fatih D?zova wrote: > > Thank you! you are really great. I m sure I m getting make u bored > > with my questions due to being a newbie in iptables tool, but I wonder > > whether it could be done on a determined IP address or a port such as > > 80, instead of icmp packets? > > Thanks, > :-) > Surely. > > (Have you ever read man iptables? Or any iptables tutorial? Would be very > helpful, really) > > [-s source_addr]|[-d dest_addr] -p tcp [--sport www]|[--dport www] > instead of > --protocol icmp --icmp-type [echo-reply]|[echo-request] > > To drop some packets which are going outside to remote www from local > machine: > > # iptables -A OUTPUT \ > -d --dport www \ > --match random --average 10 \ > -j DROP > > > ps linux is great :-) > > -- > _,-=._ /|_/| > `-.} `=._,.-=-._., @ @._, > `._ _,-. ) _,.-' > ` G.m-"^m`m' Dmytro O. Redchuk > > _______________________________________________ > LARTC mailing list > LARTC@mailman.ds9a.nl > http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc > _______________________________________________ LARTC mailing list LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc