Firewall Tunning

[ilias]

I have installed transparent squid proxy server with necessary firewall script not to allow any request from outside and unknown request using the following commands

#----------Blocking unknown request----------------------
iptables -A INPUT -i eth0 -p tcp --syn -j DROP

#---------Blocking Incoming outside request--------------
iptables -A INPUT -p tcp --destination-port 3128 -i eth0 -j DROP

but now i want to allow one IP(head office ip) with all ports to access. Can any one tell me what's the command

[AsadRasheed]

Dear ilias,

Try this bro,

iptables -A INPUT -p tcp -i eth0 --source 192.168.0.1 -j ACCEPT

and check this

http://www.faqs.org/docs/linux_network/ ... ample.html

Regards,
M Asad Rasheed

[LinuxFreaK]

Dear ilias,
Salam,

iptables -A INPUT -p tcp -i eth0 --source 192.168.0.1 -j ACCEPT

I think he should need udp protocol as well if he doing voice communication and also for DNS queries !!

# iptables -I INPUT -s 192.168.0.1 -i eth0 -j ACCEPT

Best Regards.

[AsadRasheed]

Dear ilias,
Salam,

iptables -A INPUT -p tcp -i eth0 --source 192.168.0.1 -j ACCEPT

I think he should need udp protocol as well if he doing voice communication and also for DNS queries !!

# iptables -I INPUT -s 192.168.0.1 -i eth0 -j ACCEPT

Best Regards.

May be , who knows.

Regards,
M Asad Rasheed

[lambda]

input rules make no sense at all here. he should use forward or postrouting rules.

[LinuxFreaK]

Dear lambda,
Hello,

input rules make no sense at all here. he should use forward or postrouting rules.

Right but its just for an example !!

Best Regards.