Mailinglist Archive: opensuse-security (465 mails)

< Previous Next >
Re: [suse-security] iptables-question
  • From: Max Lindner <ml@xxxxxxx>
  • Date: Sun, 30 Dec 2001 17:27:11 +0100 (CET)
  • Message-id: <Pine.LNX.4.33.0112301725330.3502-100000@xxxxxxxxxxxxxxxxxxxxxxx>
On Sun, 30 Dec 2001, da_bug wrote:

> Hi!
>
> I have question about iptables:
>
> If I want to block e.g. telnet for my two ippp-devices I do it this
> way (this works very good :)):
>
> iptables -A INPUT -i ippp0 -p tcp --dport 23 -j DROP
> iptables -A INPUT -i ippp1 -p tcp --dport 23 -j DROP
>
>
> So my question:
> Is there a way that I don't need to write a rule for every single
> interface?


why don't you try:

iptables -A INPUT -p tcp --dport 23 -j DROP

AFAIK its not necessary to specify an interface.

> Something like
> "iptables -A INPUT -i ippp0,ippp1 -p tcp --dport 23 -j DROP"
> (I know this does not work)
>
> Greedings
> <da_bug@xxxxxxx>
>

Gruß,
Max


< Previous Next >
References