How to set up an iptable rule?

Vinicius cviniciusm at terra.com.br
Mon Jan 10 01:17:55 UTC 2005


Hello,

I would like to have a rule to reject an out-of-range IP's to access a 
specified port on my system, so I did the following rule:
"iptables -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp 
--dport 22 -m iprange ! --src-range 200.252.X.X-200.252.X.Y -j REJECT 
--reject-with icmp-host-prohibited", where X and Y are appropiate numbers.

Does the above rule correct, please?

TIA,
Vinicius.




More information about the users mailing list