Re: Preventing uploads on a specific port to internet.
From: Michael Burnem (nospam@spam.no)Date: 06/17/02
- Next message: Juha Laiho: "Re: Is it possible to log outgoing mail in sendmail?"
- Previous message: Kasper Dupont: "Re: iptables - forwading web to another pc and on different port"
- In reply to: Kasper Dupont: "Re: Preventing uploads on a specific port to internet."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Michael Burnem" <nospam@spam.no> Date: Mon, 17 Jun 2002 19:06:28 GMT
"Kasper Dupont" <kasperd@daimi.au.dk> wrote in message
news:3D0E3043.D5DE9C52@daimi.au.dk...
> Michael Burnem wrote:
> >
> > I need a simple iptables rule to prevent uploads through port 2000, but
> > downloads still has to be possible.
> > I figure i should just make a --sport -j drop rule in PREROUTING
> > But that didn't work out too well..
>
> You must be more specific. Are you configuring server or client?
> Are you talking about port 2000 on server or client? What
> protocol are you using?
The protocol is tcp.
I've configured my router to route all --dport 2000 packages to 192.168.0.1
on my network, so i can get a active connection.
But now i want to limit upload's on that port, but not downloads.
I've limited upload on ppp0(to limit modem queues, since i've got adsl)
Do you know how to use tc handle on the ppp0 interface(so i could limit
upload's on port 2000), on the eth0 interface it's easy, but that only goes
for downloads.
(Sorry, i've really not gotten the logic of iproute2)
- Next message: Juha Laiho: "Re: Is it possible to log outgoing mail in sendmail?"
- Previous message: Kasper Dupont: "Re: iptables - forwading web to another pc and on different port"
- In reply to: Kasper Dupont: "Re: Preventing uploads on a specific port to internet."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
