On Sat, Dec 09, 2000 at 05:38:33PM +0800, Mark Lo <[EMAIL PROTECTED]> wrote:
| I would like to know in what circumstances should i use -s (sources)
| or -d (destinations).
You use -s when you want to talk about the machine originating the packet,
and -d when you want to talk about where the packet is going.
In a firewall scenario you're most often talking about -d and an
internal machine (eg I will let HTTP (port 80) requests from the
outside go only to the web server, thus -d n:80 where "n" is the web
server's IP).
Sometime you'll care about the source. For example you may be running
an ssh service for remote login from outside, but in serious paranoia
mode, and put in a rule to only pass ssh packets from specific remote
hosts (such as your workplace's exterior IP).
Cheers,
--
Cameron Simpson, DoD#743 [EMAIL PROTECTED] http://www.zip.com.au/~cs/
An old bike is not a Thing, it is a Process.
- David Ownby <[EMAIL PROTECTED]>
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
