Hi Mike, first of all it's not FORWARD, but INPUT, because you're trying to block incoming connections, not FORWARDED ones. Then you'll have to check if you don't have another rule that is executed before the one you've added. Best regards, Ralf Ronneburger Mike Otto wrote:
SuSEfirewall2 v2.1 iptables v1.2.5 Linux-Kernel 2.4.18 (5) -------------------------
Hi I´m looking for a way to block certain IP Addresses from all ports on my computer. I tried this at the console:
iptables -A FORWARD -p tcp -s 192.168.100.1 -d 0.0.0.0/0.0.0.0 --dport 80 -j DROP
but i can still connect from 192.168.100.1 to port 80 with telnet. Do I have to activate this rule first? or does it have to fit into firewall2-custom.rc.config, then restart firewall?
Regards, Mike