Posted by: Administrator
on December 31, 2005 11:08 AM
Yes that be done quite easily. Instead of monitoring an entire range or an individual IP address, you can narrow that down even further by specifying ports or port-ranges.
As a (simple) example, a rule like this one:
<tt>iptables -A town-a -s 192.168.1.10</tt>
could become:
<tt>iptables -A town-a -s 192.168.1.10 -p tcp --dport 80</tt>
This would monitor port 80 traffic. Add something like "-j DROP" to it, and this IP address effectively cannot browse websites anymore while it can still connect to other services.
Learn about Linux
Download Linux
Get Linux help
Re:what about ports?
Posted by: Administrator on December 31, 2005 11:08 AMAs a (simple) example, a rule like this one:
could become:
This would monitor port 80 traffic. Add something like "-j DROP" to it, and this IP address effectively cannot browse websites anymore while it can still connect to other services.
Hope that helps.
Gerard Beekmans
#