| |
| |
| |
|
Page: 1 2
Comments:
<0> hello everyone
<0> i have a request here
<0> iptables -t nat -A PREROUTING -s 10.30.143.113 -p tcp --dport 80 -d 0.0.0.0/0 -j REDIRECT --to-port 3128 how can i redirect that to anotyher computer on my network ?
<0> example redirecto to othercomputer port 3128
<0> i would apreciate that
<0> no1 can read me?
<0> where are all the pple ?
<1> debiankid: DNAT
<1> See the tutorial in /topic
<0> robw810 DNAT?
<1> yep, DNAT
<1> iptables -t nat -A PREROUTING -s 10.30.143.113 -p tcp --dport 80 -j DNAT --to-destination <otherip>
<0> thanks
<0> robw810 dnat --to-destination <otherip -p tcp --dport 3128> can be like that ?
<1> huh?
<1> You can specify a different port if you wish: -j DNAT --to-destination 10.10.13.1:25
<1> Otherwise, it will go to the same port it started
<0> okay
<2> how can i limit outgoing, forwarded traffic
<2> to certain ports?
<3> IDENTIFY renuka
<4> Does this channel cover traffic shaping?
<5> #lartc on irc.oftc.net is supposed to
<4> Okay, thanks.
<5> (though it has been quite calm for some times)
<6> hi all
<6> I want a tutorial on IP Accounting.. got a link?
<7> hello
<8> privet, yaboo.
<7> anyone able to guide me on blocking mac address leaving my lan
<7> done the -m mac --mac-source <mac address> -j DROP to no avail
<6> yaboo, don't you need his IP also?
<7> do I
<7> thought ip could change due to dhcp
<6> yaboo, you can ***ign them the IP's from DHCP
<6> static ip's through dhcp
<7> ok so hard code ip from the dhcp server
<6> yea
<7> so what would be the extra command to block the user traversing outside the lan then?
<6> and this is how to match the IP/MAC
<6> iptables -A INPUT -s 192.168.100.23 -m --mac-source ! 00:11:D8:F4:79:1A DROP
<6> iptables -A FORWARD -s 192.168.100.23 -m --mac-source ! 00:11:D8:F4:79:1A DROP
<6> yaboo, is that wha you want?
<7> this will block the user from traversing outside the lan
<6> yea
<6> do similar
<7> what if he hard codes his ip address?
<7> superlinux, so I need to use both commands you gave?
<6> well do you understand INPUT and FORWARD meaning w.r.t iptables 1st?
<6> yaboo, do u?
<7> no
<6> well you get to 1st
<7> yes
<7> w.r.t?
<6> with respect to
<6> well do you understand INPUT and FORWARD meaning w.r.t iptables 1st?
<7> what does w.r.t. mean
<6> it means with respect to
<7> acyromn means in lammens terms
<6> any way.. do you ?
<7> understand more about the INPUT and FORWARD looking at it]
<6> well INPUT is packets getting into your mechine.. immagine your machine as cup
<7> so I need to hard code his mac to a ip address via the dhcp server then insert the two rules
<6> yes
<6> but!!!
<7> understand the INPUT part
<6> packets that are poured into the cup are the INPUT
<7> yes understand
<6> packets that are penetrating the cup is forward
<7> ok
<7> understand
<6> and OUTPUT is things the cup spilled or puked
<6> LOL
<7> uh
<6> to any network device
<6> got it?
<7> yes
<7> used this command
<7> $IPTABLES -A INPUT -m mac --mac-source <mac address> -j DROP
<6> do you have skype... call me on this ID "ranixlb"
<6> we can voice chat
<7> ok will setup skype
<7> also what if he changes ip address
<6> that's why you use his IP in addtion
<6> so he has to know both
<7> but then you need to know the current ip address?
<6> and people can change the MAC
<7> if he changes it
<7> true on the mac address
<6> you make a combination of (IP, MAC) to make it harder
<7> makes sense
<6> if your clients are witty enough then you have to use pppoe
<7> oh
<6> you have to serve pppoe
<6> it'll be hard for them to change the IP
<6> cos it's point to point
<7> ok
<6> so both pint has to knw each other
<7> being a bastard then I guess
<6> call me on skype it's better
<7> ok I will
<7> superlinux you about
<6> yaboo, what are you doing don't you want to skype?
<7> superlinux you about
<6> what?
<6> rephrase please
<7> superlinux downloading skype to my linux laptop
<7> when I typed in the commands to block the mac address got this error
<7> Try `iptables -h' or 'iptables --help' for more information.
<7> iptables v1.3.5: Couldn't load match `--mac-source':/usr/local/lib/iptables/libipt_--mac-source.so: cannot open shared object file: No such file or directory
<7> am I missing a library I guess
<6> yes
<6> this means iptables was not compiled with mac address support
<7> ok understand need to compile with mac address support
<6> yaboo, where are you from? your english is very broken... thu I am an arab
<7> superlinux in australia
<6> you know
<6> I am gonna be to townsville soon
<6> I am now in lebanon
<7> cool
<7> for holiday superlinux
<6> and waiting for a visa
<6> I am gonna study Masters in IT Networking
<6> in James Cook
<7> cool superlinux
<6> but I don't know any body there
<6> so Ill be a lone
<6> so Ill be alone
<7> superlinux recompiled iptables have a libipt_mac.so gather mac library
<7> superlinux you will like queensland
<7> sunny weather like lebanon
<6> so and I need a job as soon as possible.. better be in linux or I will pull out my hair!
<6> where you are in australia?
<6> where are you in australia?
<7> superlinux plenty of work in australia, there importing skilled labour
<6> I know
<7> I'm in victoria, down south where the weather is no so good
<6> but I am a palestinian not a lebanese
<7> lots of work in voip
<6> althu it does not matter in australia
<7> superlinux race/nationality does not matter
<6> I wish I have experiance in VoIP
<6> I know CCNA
<7> superlinux I just used asterisk and got work using asterisk
<7> runs under linux
<6> is there a debian pkg for it?
<7> superlinux recompiled iptables and got the same error
<7> superlinux there is
<7> using debian myself
<7> changed your rules a bit and got rid of the errors
<7> did -m mac --mac-source
Return to
#iptables
or
Go to some related
logs:
fedora gdmsetup freezes
#ai
2004c_suse-2 config
#perl
enterminus missing keyword
#perl
MySQL CREATE FUNCTION Error 1064
#math
ubuntu mount cue
glibc-dev ftp
|
|