Bekijk de volledige versie : Restrict internet access

15-04-2009, 19:56
I'm looking for a way to restrict internet (port 80 only) access from my network. Only a single host should be able to surf the net. I haven't found any option in v1.9.2.7-10 that does this. I need the inverted MAC Filter option.
Any other ideas how this can be achieved?

20-04-2009, 14:27
well the mac filter can be set to accept and deny...
accept: allow all mac adress listed, and others not
deny: block the mac adress list and others not.

you also could try to configure an IP-tables script.
Im however not sure how to do it exactly:(

11-06-2009, 20:05
iptables -I FORWARD -j DROP
iptables -I FORWARD -p tcp --dport 80 -s [LAN_HOST_IP] -j ACCEPT
iptables -I FORWARD -p tcp --sport 80 -d [LAN_HOST_IP] -j ACCEPT

[LAN_HOST_IP]: IP of the host on the LAN that will exclusively have access to the Internet via port 80 only.