[isf-wifidog] How to configure an ip range in firewallruleset

John Boushall stumblingthunder at yahoo.com
Mer 17 Jan 20:24:31 EST 2007


I have researched an iptables option and would like to apply it to my global restrictions:
   
  iptables -A FORWARD -m iprange --dst-range 1.1.1.1-1.1.1.253 -j DROP
                  (GLOBAL?)
   
  The ip range is fictitious in the example.
   
  John Boushall
  

Benoit Grégoire <bock at step.polymtl.ca> wrote:
  On Wednesday 17 January 2007 15:18, Max Horváth wrote:
> You can use the standard iptables command set ...
>
> If you wanna restrict the access to every user of the node, just do
> it on the router directly.
>
> If you wanna restrict the access to a specific user class, add your
> iptables command to the file fw_iptables.c in function
> iptables_load_ruleset() and add the rulesets like that:
> iptables_do_command("-t filter -I " TABLE_WIFIDOG_WIFI_TO_INTERNET "
> 1 -o interface DO WHATEVER");

You can normally do that from the wifidog config file.

-- 
Benoit Grégoire
Technologies Coeus inc.
_______________________________________________
WiFiDog mailing list
WiFiDog at listes.ilesansfil.org
http://listes.ilesansfil.org/cgi-bin/mailman/listinfo/wifidog

 
---------------------------------
It's here! Your new message!
Get new email alerts with the free Yahoo! Toolbar.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://listes.ilesansfil.org/pipermail/wifidog/attachments/20070117/a55f43ad/attachment.html


Plus d'informations sur la liste de diffusion WiFiDog