Author |
Message |
|
Post subject: novy firewall chain v mk 2.9
Posted: 15.06.2007 - 10:36 #53067
|
|
Basic
Joined: Máj 04, 2007
Posts: 10
|
|
Vie niekto ci sa da pridat novy chain do firewallu? potrebujem tam spravit rochu zlozitejsi firewall a nechce sa mi niektore pravidla pisat troj-stvornasobne koli zdrojovim ipckam, potrebujem na to novy chain. |
|
|
|
|
|
|
Post subject: RE: novy firewall chain v mk 2.9
Posted: 15.06.2007 - 10:39 #53068
|
|
|
samozrejme ze sa da, staci ho tam iba napisat, mas predvolene a potom sa da este dopisat rucne. |
|
|
|
|
|
|
Post subject: RE: novy firewall chain v mk 2.9
Posted: 15.06.2007 - 11:18 #53075
|
|
Basic
Joined: Sep 13, 2005
Posts: 267
Location: Bratislava
|
|
iptables -N novy_chain
iptables -A novy_chain -i eth0 .... -j ACCEPT
a potom iptables -I INPUT ... -J novy_chain |
|
|
|
|
|
|
Post subject: RE: novy firewall chain v mk 2.9
Posted: 15.06.2007 - 15:41 #53106
|
|
Majster
Joined: Feb 25, 2003
Posts: 2606
Location: BA,BB
|
|
fixi wrote: ›iptables -N novy_chain
iptables -A novy_chain -i eth0 .... -j ACCEPT
a potom iptables -I INPUT ... -J novy_chain
... si si isty ze ti to Mikrotik alias "mk 2.9" zozerie ? |
|
|
|
|
|
|
Post subject: RE: novy firewall chain v mk 2.9
Posted: 15.06.2007 - 15:53 #53109
|
|
Ucen
Joined: Jan 15, 2005
Posts: 768
|
|
Zozerie ale musis to napisat(naklikat) v inom tvare |
|
|
|
|
|
|
Post subject: RE: novy firewall chain v mk 2.9
Posted: 15.06.2007 - 21:36 #53153
|
|
Basic
Joined: Sep 13, 2005
Posts: 267
Location: Bratislava
|
|
eXplorer wrote: › fixi wrote: ›iptables -N novy_chain
iptables -A novy_chain -i eth0 .... -j ACCEPT
a potom iptables -I INPUT ... -J novy_chain
... si si isty ze ti to Mikrotik alias "mk 2.9" zozerie ?
jaj som si nefsimol ze to je pre ten kok.... system berem spat |
|
|
|
|
|
|
Post subject: novy firewall chain v mk 2.9
Posted: 16.06.2007 - 01:36 #53158
|
|
Ucen
Joined: Okt 21, 2004
Posts: 792
|
|
lordiceman wrote: ›Vie niekto ci sa da pridat novy chain do firewallu? potrebujem tam spravit rochu zlozitejsi firewall a nechce sa mi niektore pravidla pisat troj-stvornasobne koli zdrojovim ipckam, potrebujem na to novy chain.
/ ip firewall filter add chain=services protocol=tcp dst-port=20-21 action=accept comment="allow ftp"
/ ip firewall filter add chain=input action=jump jump-target=services comment="jump to chain services" |
|
|
|
|
|
|
Powered by PNphpBB2 © 2003-2005 The PNphpBB Group Credits |