From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <lav@VL3143.spb.edu>
Content-Type: text/plain;
  charset="koi8-r"
From: Vitaly Lipatov <LAV@VL3143.spb.edu>
Organization: LAVNet
To: sisyphus@altlinux.ru
Subject: Re: [sisyphus] Re: [sisyphus] =?koi8-r?b?7sHT1NLPysvBINzMxc3FztTB0s7Px88=?= =?koi8-r?b?IM3B08vB0sHEwQ==?=
Date: Sat, 9 Mar 2002 22:51:37 +0300
X-Mailer: KMail [version 1.3.2]
References: <20020309134847.741B19276@VL3143.spb.edu> <20020309194356.0d61e602.sass@uustoll.ee>
In-Reply-To: <20020309194356.0d61e602.sass@uustoll.ee>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Message-Id: <20020309195138.BE9CE2B790@VL3143.spb.edu>
Content-Transfer-Encoding: 8bit
Sender: sisyphus-admin@altlinux.ru
Errors-To: sisyphus-admin@altlinux.ru
X-BeenThere: sisyphus@altlinux.ru
X-Mailman-Version: 2.0
Precedence: bulk
Reply-To: sisyphus@altlinux.ru
List-Help: <mailto:sisyphus-request@altlinux.ru?subject=help>
List-Post: <mailto:sisyphus@altlinux.ru>
List-Subscribe: <http://altlinux.ru/mailman/listinfo/sisyphus>,
	<mailto:sisyphus-request@altlinux.ru?subject=subscribe>
List-Id: <sisyphus.altlinux.ru>
List-Unsubscribe: <http://altlinux.ru/mailman/listinfo/sisyphus>,
	<mailto:sisyphus-request@altlinux.ru?subject=unsubscribe>
List-Archive: <http://altlinux.ru/pipermail/sisyphus/>
Archived-At: <http://lore.altlinux.org/sisyphus/20020309195138.BE9CE2B790@VL3143.spb.edu/>
List-Archive: <http://lore.altlinux.org/sisyphus/>

On 9 March 2002 20:43, Aleksandr Blohin wrote:
> EXTIF=ppp+
я написал здесь ppp0
>
> ANY=0.0.0.0/0
> localnet="192.168.0.0/24"
> firewallhost="192.168.0.8/32"
> localhost_localdomain="127.0.0.1/32"
>
> iptables -P INPUT ACEPT
> iptables -P OUTPUT ACCEPT
> iptables -P FORWARD DROP
>
> iptables -F INPUT
> iptables -F OUTPUT
> iptables -F FORWARD
>
> # Deny TCP and UDP packets to privileged ports
> iptables -A INPUT -i $EXTIF -d $ANY -p udp -dport 0:1023  -j DROP
> iptables -A INPUT -i $EXTIF -d $ANY -p tcp -dport 0:1023 -j DROP
> #-----------------------------------------------------------------
Эти строчки выдают следующее:
iptables: Bad policy name
iptables v1.2.5: multiple -d flags not allowed
Try `iptables -h' or 'iptables --help' for more information.
iptables v1.2.5: multiple -d flags not allowed
Try `iptables -h' or 'iptables --help' for more information.
[root@lav rc.d]#
Увы мне, увы.
-- 
Lav
Виталий Липатов
ФГУП "ЦНИИ Судовой Электротехники и Технологии", Санкт-Петербург
GNU! Linux! LaTeX! LyX!