Re: iptables: always allow port 80
Mariusz Kruk <kruk@epsilon.eu.org> writes:
> On Wed, 2009-07-29 at 12:52 +0200, Sebastian Rose wrote:
>> Questions for iptables specialists:
>>
>>
>> 1.) iptables -I DENYCC 4 -m tcp --dport 80 -j ACCEPT
>>
>> Is a rule like this acceptable?
>
> Are you sure you didn't want '-p tcp' instead of '-m tcp'?
Yes, -p is what I want.
>> Should I use --limit?
>
> If you want.
>
>> 2.) Which MAC address does the server see?
>> Will it always be the MAC address of my customers machine?
>
> It seems you've got _a lot_ to read.
> How do you want to see MAC of the host on the completely different
> segment of the network? (add to this that the host might be connected
> via 'MAC-less' type of network).
I sure _should_ read a lot about networking and maybe I will one day...
Thanks anyway,
Sebastian
Reply to: