Yay Jeremy (was Re: [plug] Spam sender sues)

[Leon Brooks]

On Tuesday 04 June 2002 21:16, Harry McNally wrote:
> I'd be more than pleased that someone blocked access to those IPs at _our_
> office :-)

iptables -I INPUT -s 192.168.1.0/24 -j DROP
iptables -I INPUT -s 192.168.2.0/24 -j DROP
iptables -I FORWARD -s 192.168.1.0/24 -j DROP
iptables -I FORWARD -s 192.168.2.0/24 -j DROP

...or better still...

iptables -A INPUT -i $WAN_IF -d $WAN_IP \
  -m state --state ESTABLISHED,RELATED -j ACCEPT
iptables -A INPUT -i $WAN_IF -j DROP
# (ditto FORWARD)

...responses to outgoing calls only, to our address only. All else blackholed.

Cheers; Leon