iptables if not ip?

By Original Poster
in Smart Home, Network & Security

 Share

Recommended Posts

Grand Master

Original Poster

Posted
Posted

hey!

 

I am just setting up an IP tables rule ( i really need a good book suggestion for iptables because I cant keep asking you guys/budman all the time)

where if the ip address is not 192.168.0.1 then follow a certain rule I already have the rule I want to be followed in place I just do not know how to do this if ip rule ;(

 

any help? links etc?

Link to comment
https://www.neowin.net/forum/topic/1225239-iptables-if-not-ip/
Share on other sites
Grand Master

Xahid

Posted
Posted

If you know basic firewall rules and have basic understanding how firewall works, you can easily setup IPTables.

use vuurmuur to configure IPTables, its GUI or more like TUI for IPTables.

seeing is believing.

http://www.vuurmuur.org/trac/wiki/ScreenShots#Screenshots

Grand Master

Original Poster

Posted
  • Author
Posted
  On 11/08/2014 at 09:27, Xahid said:

If you know basic firewall rules and have basic understanding how firewall works, you can easily setup IPTables.

use vuurmuur to configure IPTables, its GUI or more like TUI for IPTables.

seeing is believing.

http://www.vuurmuur.org/trac/wiki/ScreenShots#Screenshots

I understand the logic just not the code D: I would honestly rather script it than use a GUI, GUIs are for when I can use the command line and have the right to be lazy :P

Grand Master

+BudMan MVC

Posted
  • MVC
Posted

The ! is how you invert something, this is standard across most anything not jut iptables. if you want your rule to be if the IP is not 192.168.0.1 then it would be be ! 192.168.0.1. if you want to say everything but a specific interface then something like !eth1

Have you looked at the man even?

http://linux.die.net/man/8/iptables

Here is good ref

http://shop.oreilly.com/product/9780596005696.do

hint.. maybe if you google for that there would be links to find it pdf.. just saying that might happen if you google..

Grand Master

Original Poster

Posted
  • Author
Posted
  On 11/08/2014 at 12:30, BudMan said:

The ! is how you invert something, this is standard across most anything not jut iptables. if you want your rule to be if the IP is not 192.168.0.1 then it would be be ! 192.168.0.1. if you want to say everything but a specific interface then something like !eth1

Have you looked at the man even?

http://linux.die.net/man/8/iptables

Here is good ref

http://shop.oreilly.com/product/9780596005696.do

hint.. maybe if you google for that there would be links to find it pdf.. just saying that might happen if you google..

I went crazy googling :P I do google before I ask here I just dont know what to search half the time...

 

this is what I used in the end

 

A PREROUTING -i eth0 -d ! 192.168.0.1 -p tcp -m tcp --dport 80 -j REDIRECT --to-ports 3128

Grand Master

+BudMan MVC

Posted
  • MVC
Posted

so you did this ?
http://lmgtfy.com/?q=not+or+invert+iptables
 

:shiftyninja: If you google the book I linked too, I don't know it might be available all over the place as a pdf for free - somethings are like that on the internet, free and everywhere is all I am saying ;)

Grand Master

Original Poster

Posted
  • Author
Posted
  On 11/08/2014 at 12:44, BudMan said:

so you did this ?

http://lmgtfy.com/?q=not+or+invert+iptables

 

:shiftyninja: If you google the book I linked too, I don't know it might be available all over the place as a pdf for free - somethings are like that on the internet, free and everywhere is all I am saying ;)

I know it is free over the web and easy to find lol but everything i searched for this problem just kept coming up with things I did not need :( and besides I am still learning :D it helps me more if it is my own question atleast I wont have to ask this question again. when this is all over I might have to write a full squid guide lol with loads of different angles this system is menttaalll

This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.