da_bug wrote:

hi!

I want to deny the client-computers behind my router to access some special domains/ip-addresses in the internet. I tried something like "ipchains -A input -d xxx.yyy.zzz.xxx -p tcp -j DENY" and "ipchains -A input -s xxx.yyy.zzz.xxx -p tcp -j DENY" but it didn't work... What can I do to deny access?

bye.

you have an error -s is: the source of the petition. is you networks is 192.168.0.0 with netmask 255.255.255.0 you need to put it in the -s (if you want to block all your networks, or the specific IP) and the -d is for the destination, por example, if you want to stop the conections to hotmail, make a lot of ping to www.hotmail.com and copy all IP of hotmail, for example, if hotmail is: 100.100.100.1 .2 .3 .4 .5 and .6 yuou need to put: ipchains -A input -s 192.168.0.0/0 -d 100.100.100.1 -p TCP -j DENY ipchains -A input -s 192.168.0.0/0 -d 100.100.100.1 -p UDP -j DENY and repeat it all times for each IP of the destination (until .6 in this example) If you need more help, write. PD: Excuse for my bad english -- www.geekcode.com -----BEGIN GEEK CODE BLOCK----- Version: 3.1 GCS/cc/e/it d++ s+:+ a-- C++$ UL+++$ E++ W+++$ w--- O---- M V- PS PE+++ Y+ PGP- t+ 5 X++ R tv+ b++ DI-- D+ G e++$ h! r++ y++ ------END GEEK CODE BLOCK------ - A veces creo que hay vida en otros planetas, y a veces creo que no. En cualquiera de los dos casos, la conclusión es asombrosa (Carl Sagan) -----------------------------------------------------------------D: Excuse for my bad english -- www.geekcode.com -----BEGIN GEEK CODE BLOCK----- Version: 3.1 GCS/cc/e/it d++ s+:+ a-- C++$ UL+++$ E++ W+++$ w--- O---- M V- PS PE+++ Y+ PGP- t+ 5 X++ R tv+ b++ DI-- D+ G e++$ h! r++ y++ ------END GEEK CODE BLOCK------ - A veces creo que hay vida en otros planetas, y a veces creo que no. En cualquiera de los dos casos, la conclusión es asombrosa (Carl Sagan) -----------------------------------------------------------------