From: wlagmay@yanbulink.net
To: Pascal Hambourg <pascal.mail@plouf.fr.eu.org>
Cc: netfilter@lists.netfilter.org
Subject: Re: Help on Iptables
Date: Sun, 17 Dec 2006 15:08:38 +0300 [thread overview]
Message-ID: <1166357318.458533468def6@webmail.yanbulink.net> (raw)
In-Reply-To: <458446EB.8030005@plouf.fr.eu.org>
Thanks Pascal, anyway maybe you can help me with my other problem, I already
post it but up to now I don't have any reply so I'm just thinking that you
might help me.
You see I'm using "SAME" for my Network Address translation. example
-A POSTROUTING -s 192.168.64.0/255.255.224.0 -j SAME --nodst --to
212.xxx.xxx.9-212.xxx.xxx.14
My question is, how can I log and trace which private IP is using a certain
public IP a any given time and date.
example let say, somebody is complaining that there is a network flood or attack
coming form 212.xxx.xxx.14, so in order for me to trace which machine is making
the flood I should know whick private IP address is using 212.xxx.xxx.14 at
that given time.
Thank you very much and I hope that you can help me.
Wennie
Quoting Pascal Hambourg <pascal.mail@plouf.fr.eu.org>:
> Hello,
>
> wlagmay@yanbulink.net a écrit :
> >
> > I just want to know How am I going to do a blocking of multiple ports on a
> > single line let say port 700 to 800.
> >
> > Im trying this command but it is not working
> >
> > iptables -A OUTPUT -p tcp -m state --state NEW -m tcp --dport 700-800 -j
> DROP
> > iptables -A OUTPUT -p tcp -m state --state NEW -m tcp --dport 700 --to 800
> -j
> > DROP
>
> man iptables says the port range syntax in port matches is "700:800".
> The port range syntax "700-800" is used only in NAT targets.
>
>
next prev parent reply other threads:[~2006-12-17 12:08 UTC|newest]
Thread overview: 12+ messages / expand[flat|nested] mbox.gz Atom feed top
2006-12-16 17:04 Help on Iptables wlagmay
2006-12-16 19:20 ` Pascal Hambourg
2006-12-17 12:08 ` wlagmay [this message]
-- strict thread matches above, loose matches on Subject: below --
2003-10-14 12:50 Help on IPTABLES Gilles Yue
2003-10-13 12:09 Gilles Yue
2003-10-13 13:23 ` Ralf Spenneberg
2003-10-10 6:43 Gilles Yue
2003-10-09 12:24 Gilles Yue
2003-10-09 13:54 ` Rob Sterenborg
2003-10-14 6:59 ` Joel Newkirk
2003-10-09 12:20 info
2003-10-11 14:32 ` Leonardo Rodrigues Magalhães
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=1166357318.458533468def6@webmail.yanbulink.net \
--to=wlagmay@yanbulink.net \
--cc=netfilter@lists.netfilter.org \
--cc=pascal.mail@plouf.fr.eu.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.