iptabes
I am trying to secure a interface that is attached to my system, eth1.
I have tried to use the command iptables -A INPUT -i eth1 -p tcp --syn -j DROP
But that just kills all TCP communication on both interfaces, eth0
and eth1.
Does anyone have any idea on how to leave eth0 completly open, but not
have any communication on eth1. The reason I want to do this is that
eth1 is connected to the DMZ on my router and has snort listening
there. the machine is'nt acting as a gateway, it is just a server running snort on eth1, which is its only task on eth1, eth0 is the main interface connected to the router.
|