Re: help me - Christoph Georgi

Linux Netfilter discussions
 help / color / mirror / Atom feed

From: Christoph Georgi <christoph.georgi@web.de>
To: umar draz <umar_draz@yahoo.com>
Cc: Mr NetFilter <netfilter@lists.netfilter.org>
Subject: Re: help me
Date: Mon, 04 Jul 2005 22:47:15 +1200	[thread overview]
Message-ID: <42C913B3.8010202@web.de> (raw)
In-Reply-To: <20050704103908.15589.qmail@web53106.mail.yahoo.com>

make the default policy of the incoming chain (input) drop, but allow 
established and related traffic, and allow all outgoing traffic by 
setting the default policy to allow for the output chain (although it's 
adviced to specify the outgoing traffic further..)

# drops all traffic
$IPTABLES -P INPUT DROP
$IPTABLES -P OUTPUT ACCEPT
$IPTABLES -P FORWARD DROP

# allow established an related incoming traffic
$IPTABLES -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT


christoph


umar draz wrote:
> hi dear members!
> 
>   i have one interface card in my linux machine <eth0>
> 
>   now i attache DSL modem with this interface now i
> want block all incoming traffic.
> 
> but i want i can access every thing.
> 
> how i can do it
> 
> regards
> 
> Umar Draz
> 
> __________________________________________________
> Do You Yahoo!?
> Tired of spam?  Yahoo! Mail has the best spam protection around 
> http://mail.yahoo.com 
> 
> 

-- 


Christoph Georgi
-----------------------------
email.  christoph.georgi@web.de
fon.	+64 (0)9 815 8259

registered linux user #380268
ubuntu 5.04 (ubuntu.com)

next prev parent reply	other threads:[~2005-07-04 10:47 UTC|newest]

Thread overview: 8+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2005-07-04 10:39 help me umar draz
2005-07-04 10:47 ` Christoph Georgi [this message]
2005-07-04 13:45   ` /dev/rob0
  -- strict thread matches above, loose matches on Subject: below --
2006-03-29  0:19 bash
2006-03-29  1:50 ` John A. Sullivan III
2006-03-29  3:29   ` bash
2003-06-10 22:20 Help Me George Vieira
2003-06-10  6:31 Pham Dinh Hieu

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=42C913B3.8010202@web.de \
    --to=christoph.georgi@web.de \
    --cc=netfilter@lists.netfilter.org \
    --cc=umar_draz@yahoo.com \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox