[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Multiple discrete IP match rule - iptables

Greetings!

On Thu, 1 Apr 2004 04:25:16 -0300 "Alano Stolf" <alano@stolf.com> wrote:

> I have not found any reference on how to specify more than one IP
> (discrete IPs, not a range) in an iptables rule.   [...]
> For instance, a rule like this should be fine:
> iptables -A FORWARD -p tcp -d ! (IP_of_MySMTP_1 IP_of_MySMTP_2)
> --dport 25 -j LOG --log-prefix "Access to suspicious SMTP: "

The only IP packet filter I am aware of that natively allows grouping
within rules is the OpenBSD pf packet filter.

Bye

Volker Tanger
ITK Security
Reply to: