Iptables generic broadcast filter

To: Debian Firewall <debian-firewall@lists.debian.org>
Subject: Iptables generic broadcast filter
From: Alex Ongena <Alex.Ongena@able.be>
Date: 13 Nov 2002 14:46:50 +0100
Message-id: <1037195210.939.16.camel@aolin>

Hi All,

I want to drop all broadcasts on INPUT in a generic way
without knowing in advance on which subnet/netmask my
appliance is.

something like:

# iptables -A INPUT -d *.*.*.255 -j DROP
# iptables -A INPUT -d *.*.255.255 -j DROP
# iptables -A INPUT -d *.255.255.255 -j DROP

where * is a wildcard matching any ip.

Is this possible with iptables 1.2.7a ?

Thanks for any help
Alex

Reply to:

Follow-Ups:
- Re: Iptables generic broadcast filter
  - From: Matthew Kirkwood <matthew@hairy.beasts.org>
- Re: Iptables generic broadcast filter
  - From: Ard van Breemen <ard@kwaak.net>

Prev by Date: Re: Firewall/Router for Sharing a Cable Modem Connection
Next by Date: Re: Iptables generic broadcast filter
Previous by thread: unsubscribe
Next by thread: Re: Iptables generic broadcast filter
Index(es):
- Date
- Thread