LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 09-18-2009, 03:59 AM   #1
Mayhm
LQ Newbie
 
Registered: Sep 2009
Posts: 2

Rep: Reputation: 0
I need help. I'm new at Linux


I'm having trouble with making a iptable rule that will block all
traffic from 10.14.34.207 and not letting the sender know that traffic is being blocked. I'm thinking whether it should be # iptable -R Input 1 --source 10.14.34.207. I tried reading my book on the section about iptables and their commands, but I didn't quite understand it. Also, if the following entry in TCP wrappers (which from my notes, i think are daemons that allow certain access to a local server depending on the client's rules or permissions)if a client at address 172.16.124.100 tries to access a website running on that server what would happen?
hosts.allow
httpd: 172.16.*
vsftpd: 192.168.0.*
sshd: 172.16.20.114 I'm guessing that since I read from my linux book, if the daemon/client pair matches a line in hosts.allow, then access is granted. So, I'm assuming that since no line matches it exactly as the server, then access would be granted for the client right?

hosts.deny
httpd: 172.15.*
vsftpd: 172.16.24.100
sshd: 172.16.*
And I'm assuming since the vsftpd line matches the client address, then access would be denied right?
One last thing, can someone clarify for me the vsftd?
Is is the same as ftp?
 
Old 09-18-2009, 04:09 AM   #2
kdelover
Member
 
Registered: Aug 2009
Posts: 311

Rep: Reputation: 36
What is the rule you wrote? Try this
iptables -t filter -I INPUT -s 10.14.34.207 -d <your ip address> -j DROP
 
Old 09-19-2009, 03:35 AM   #3
Mayhm
LQ Newbie
 
Registered: Sep 2009
Posts: 2

Original Poster
Rep: Reputation: 0
The rule that i was thinking of writing was
#iptables iptable -R Input 1 --source 10.14.34.207 -J Drop
if that helps. As you can see, I really am a newbie :'(
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off




All times are GMT -5. The time now is 02:08 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration