This might be a stupid question...
Aldo S. Lagana
alagana@discmail.com
Thu, 14 Mar 2002 16:27:12 -0500
This is a multi-part message in MIME format.
------=_NextPart_000_004A_01C1CB75.18C4D710
Content-Type: text/plain;
charset="us-ascii"
Content-Transfer-Encoding: 7bit
I think you need to put the DROP into a FORWARD rule...OUTPUT chains (if
I'm not mistaken) don't get used for destinations outside the Linux
gateway (iptables box)
-----Original Message-----
From: netfilter-admin@lists.samba.org
[mailto:netfilter-admin@lists.samba.org] On Behalf Of Ryan Clarke
Sent: Thursday, March 14, 2002 2:37 PM
To: netfilter@lists.samba.org
Subject: This might be a stupid question...
Alright guys, this might be a stupid question.
I just transitioned from IPCHAINS to IPTABLES and I'm trying to ban the
computers in my network from reaching a webpage (ads.x10.com....the
hated X10 ads!). The command I'm trying to use is as follows:
iptables -A OUTPUT -o ppp0 -d 63.211.210.20 -j DROP
It executes fine, HOWEVER I can still get to that webpage. Any help?
Thanks a lot.
Ryan Clarke
sniper@wpi.edu
------=_NextPart_000_004A_01C1CB75.18C4D710
Content-Type: text/html;
charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META HTTP-EQUIV=3D"Content-Type" CONTENT=3D"text/html; =
charset=3Dus-ascii">
<TITLE>Message</TITLE>
<META content=3D"MSHTML 6.00.2713.1100" name=3DGENERATOR></HEAD>
<BODY>
<DIV><SPAN class=3D507112621-14032002><FONT face=3DArial color=3D#0000ff =
size=3D2>I=20
think you need to put the DROP into a FORWARD rule...OUTPUT chains (if =
I'm not=20
mistaken) don't get used for destinations outside the Linux gateway =
(iptables=20
box)</FONT></SPAN></DIV>
<BLOCKQUOTE dir=3Dltr=20
style=3D"PADDING-LEFT: 5px; MARGIN-LEFT: 5px; BORDER-LEFT: #0000ff 2px =
solid; MARGIN-RIGHT: 0px">
<DIV></DIV>
<DIV class=3DOutlookMessageHeader lang=3Den-us dir=3Dltr =
align=3Dleft><FONT=20
face=3DTahoma size=3D2>-----Original Message-----<BR><B>From:</B>=20
netfilter-admin@lists.samba.org =
[mailto:netfilter-admin@lists.samba.org] <B>On=20
Behalf Of </B>Ryan Clarke<BR><B>Sent:</B> Thursday, March 14, 2002 =
2:37=20
PM<BR><B>To:</B> netfilter@lists.samba.org<BR><B>Subject:</B> This =
might be a=20
stupid question...<BR><BR></FONT></DIV>
<DIV><SPAN class=3D470313419-14032002><FONT face=3DArial =
size=3D2>Alright guys, this=20
might be a stupid question.</FONT></SPAN></DIV>
<DIV><SPAN class=3D470313419-14032002><FONT face=3DArial=20
size=3D2></FONT></SPAN> </DIV>
<DIV><SPAN class=3D470313419-14032002><FONT face=3DArial size=3D2>I =
just=20
transitioned from IPCHAINS to IPTABLES and I'm trying to ban the =
computers in=20
my network from reaching a webpage (ads.x10.com....the hated X10 =
ads!). The=20
command I'm trying to use is as follows:</FONT></SPAN></DIV>
<DIV><SPAN class=3D470313419-14032002><FONT face=3DArial=20
size=3D2></FONT></SPAN> </DIV>
<DIV><SPAN class=3D470313419-14032002><FONT face=3DArial =
size=3D2>iptables -A OUTPUT=20
-o ppp0 -d 63.211.210.20 -j DROP</FONT></SPAN></DIV>
<DIV><SPAN class=3D470313419-14032002><FONT face=3DArial=20
size=3D2></FONT></SPAN> </DIV>
<DIV><SPAN class=3D470313419-14032002><FONT face=3DArial size=3D2>It =
executes fine,=20
HOWEVER I can still get to that webpage. Any help?</FONT></SPAN></DIV>
<DIV><SPAN class=3D470313419-14032002><FONT face=3DArial=20
size=3D2></FONT></SPAN> </DIV>
<DIV><SPAN class=3D470313419-14032002><FONT face=3DArial =
size=3D2>Thanks a=20
lot.</FONT></SPAN></DIV>
<DIV><SPAN class=3D470313419-14032002><FONT face=3DArial=20
size=3D2></FONT></SPAN> </DIV>
<DIV><SPAN class=3D470313419-14032002><FONT face=3DArial size=3D2>Ryan =
Clarke</FONT></SPAN></DIV>
<DIV><SPAN class=3D470313419-14032002><FONT face=3DArial=20
size=3D2>sniper@wpi.edu</FONT></SPAN></DIV></BLOCKQUOTE></BODY></HTML>
------=_NextPart_000_004A_01C1CB75.18C4D710--