ipfw to iptables

Mon, 22 Oct 2001 13:14:13 +0800

On Monday 22 October 2001 12:49, mehrdad nosrati wrote:
> [...]
> 4) I dont know which rule can forbiden IP source route in to my
>    network?
>    This can be done in FreeBSD as like:
>    ipfw add 10 deny log ip from any to "my ip address" ipoptions
>    ssrr
>    ipfw add 11 deny log ip from any to "my ip address" ipoptions
>    lsrr

Hello,

For the sequence number that netfilter use automatically
for you, I guess if you want to change that you will
have to hack some code. You can always contribute it back
on the netfilter-devel mailing list...

For ipv4 options, get the latest version of netfilter by
CVS (instruction on main page). go into the userspace directory and type
# make most-of-pom
enable ipv4options
recompile your kernel and netfilter userspace tools.
make install and there you go.

For info on how to use it, type
iptables -m ipv4options --help
or read the source.

Have a nice day,

Fabrice.
-- 
Fabrice MARIE
Senior R&D Engineer
Celestix Networks
http://www.celestix.com/

"Silly hacker, root is for administrators" 
       -Unknown