Hi Ralf and Michael, thanks for helping! Ralf Ronneburger wrote:
first of all it's not FORWARD, but INPUT, because you're trying to block incoming connections, not FORWARDED ones.
yepp! my mistake! Michael Zimmerman wrote:
And secondly your rule is only blocking port 80 (HTTP), right?
right! Ralf Ronneburger wrote:
Then you'll have to check if you don't have another rule that is executed before the one you've >added.
I guess this is my problem, since the firewall script has already been executed. What I found out is that this rule works pretty well for my purposes: iptables -R INPUT 1 -p TCP -s 192.109.xxx.xxx -j DROP But this way. I am sure that I overwrite another important rule. Now I need something that lists all INPUT rules by number on the screen. Well, I found a nice tutorial out there http://people.unix-fu.org/andreasson/iptables-tutorial/iptables-tutorial.htm... and promise to read it before I ask the next question ;-) Best Regards, Mike