Quote:
Originally posted by bijuhpd
i want to set iptables in two machines to accept the packets from the server only and not from anyother machines
|
are the clients and the server on the same LAN? if so, you could filter using the mac and ip address of the server, but
what kind of input are you looking to allow from the server???
let's say the server is 192.168.0.1 with mac address xx:yy:zz:xx:yy:zz...
Code:
/sbin/modprobe ipt_mac
iptables -P INPUT DROP
iptables -A INPUT -s 192.168.0.1 -m mac --mac-source xx:yy:zz:xx:yy:zz -j ACCEPT
this would do what you are asking (accept ALL input coming from the server), but that isn't really a good thing, as the purpose of a firewall is to allow only needed traffic...
also, why does the server need to connect to the clients?? it's usually the other way around...
=/