Re: iptables: always allow port 80

To: Mariusz Kruk <kruk@epsilon.eu.org>
Cc: debian-isp@lists.debian.org
Subject: Re: iptables: always allow port 80
From: Sebastian Rose <sebastian_rose@gmx.de>
Date: Wed, 29 Jul 2009 13:28:24 +0200
Message-id: <[🔎] 87k51r3ezr.fsf@kassiopeya.MSHEIMNETZ>
In-reply-to: <[🔎] 1248865429.18640.5.camel@poznojuz> (Mariusz Kruk's message of "Wed, 29 Jul 2009 13:03:49 +0200")
References: <[🔎] 87tz0v3gnw.fsf@kassiopeya.MSHEIMNETZ> <[🔎] 1248865429.18640.5.camel@poznojuz>

Mariusz Kruk <kruk@epsilon.eu.org> writes:
> On Wed, 2009-07-29 at 12:52 +0200, Sebastian Rose wrote:
>> Questions for iptables specialists:
>> 
>> 
>> 1.) iptables -I DENYCC 4 -m tcp --dport 80 -j ACCEPT
>> 
>>    Is a rule like this acceptable?
>
> Are you sure you didn't want '-p tcp' instead of '-m tcp'?

Yes, -p is what I want.


>>    Should I use --limit?
>
> If you want.
>
>> 2.) Which MAC address does the server see?
>>     Will it always be the MAC address of my customers machine? 
>
> It seems you've got _a lot_ to read.
> How do you want to see MAC of the host on the completely different
> segment of the network? (add to this that the host might be connected
> via 'MAC-less' type of network).

I sure _should_ read a lot about networking and maybe I will one day...


Thanks anyway,


  Sebastian

Reply to:

References:
- iptables: always allow port 80
  - From: Sebastian Rose <sebastian_rose@gmx.de>
- Re: iptables: always allow port 80
  - From: Mariusz Kruk <kruk@epsilon.eu.org>

Prev by Date: Re: iptables: always allow port 80
Next by Date: Re: [solved] Re: tunnel between two debian hosts not working
Previous by thread: Re: iptables: always allow port 80
Next by thread: Re: iptables: always allow port 80
Index(es):
- Date
- Thread