• s4d
  • New member
  • Offline
  • Registered: 2009-10-28
  • Posts: 2

Topic: iptables script configuration

Hello,

How can I configure firewall.iptables to DROP communications to the EXTIF network?

I only want to allow communication to the internet

How can I do that?

If possible, I won't have to write in the file the network IP, is it possible to do that with a variable ?

Thanks

  • Registered: 2009-06-15
  • Posts: 5

Re: iptables script configuration

I did it by adding this code to the firewall. leaving 192.168.24.1 for gateway access,  and 192.168.24.255 for broadcast. I don't believe that the chilli side needs access to the broadcast but I left it open.

Note: 192.168.24.x is my EXTIF and my office LAN and 192.168.240.x is the hotspot

$IPTABLES -I FORWARD -m iprange --src-range 192.168.24.2-192.168.24.254 -j DROP