ok. i tried it with < ipchain -A forward -d xxx.yyy.zzz.xxx -j DENY > and with < ipchains -I output 1 -d xxx.yyy.zzz.xxx -j DENY >
..and I can see with ipchains -L that the rules are working, but I still have access to the restricted domain from the clients... :-(
What could be wrong...?
Please read the ipchains howto at /usr/share/doc/howto/en/IPCHAINS-HOWTO.gz on a SuSE system. It answers your questions with the necessary background. It won't help you in the long run if you find the right command to enter but do not understand what's behind it. It's really not that difficult.
(thanx for your help ;-))
bye.
Thanks, Roman. -- - - | Roman Drahtmüller <draht@suse.de> // "Caution: Cape does | SuSE GmbH - Security Phone: // not enable user to fly." | Nürnberg, Germany +49-911-740530 // (Batman Costume warning label) | - -