[prev in list] [next in list] [prev in thread] [next in thread] 

List:       ipcop-user
Subject:    Re: [IPCop-user] IPCOP - iptables block TCP ports by time of day
From:       "Dylan Haines" <dylanh () hb-studios ! com>
Date:       2011-12-09 17:57:13
Message-ID: 01a801ccb69b$fb4d8750$f1e895f0$ () com
[Download RAW message or body]


-----Original Message-----
From: G.W. Haywood [mailto:ged@jubileegroup.co.uk] 
Sent: December-03-11 12:03 PM
To: ipcop-user@lists.sourceforge.net
Subject: Re: [IPCop-user] IPCOP - iptables block TCP ports by time of day

Hi there,

On Sat, 3 Dec 2011 Dylan Haines wrote:

> I have been playing around with these rules to block Steam during
> work hours for example, with no luck:
>
> iptables -A INPUT -p tcp -d 0.0.0.0/0 --dport 27014:27030 -m time \
> --timestart 08:15 --timestop 18:30 --days Mon,Tue,Wed,Thu,Fri -j DROP

The INPUT rules deal with packets destined for the IPCop box itself.
Packets which go through it to reach other machines are dealt with
by the FORWARD and CUSTOMFORWARD rules.

Try -A FORWARD or (perhaps better) -A CUSTOMFORWARD instead.

--

73,
Ged.

----------------------------------------------------------------------------
--
All the data continuously generated in your IT infrastructure 
contains a definitive record of customers, application performance, 
security threats, fraudulent activity, and more. Splunk takes this 
data and makes sense of it. IT sense. And common sense.
http://p.sf.net/sfu/splunk-novd2d
_______________________________________________
IPCop-user mailing list
IPCop-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/ipcop-user


That did the trick, thanks :-)

Forgot about how you need customforward for internal traffic.

This is what works for me on IPCOP:

/sbin/iptables -A CUSTOMFORWARD -p tcp -d 0.0.0.0/0 --dport 27014:27030 -m
time --timestart 08:15 --timestop 18:00 --days Mon,Tue,Wed,Thu,Fri -j DROP

Dylan Haines
Systems Technical Support Manager

HB Studios Multimedia Ltd.  
Box 725, The Hive
37 Hall Street
Lunenburg, NS  B0J 2C0

Tel:  (902)634-8316 ext. 237
Cell: (902)553-0709
Fax: (902)634-3647

www.hb-studios.com


------------------------------------------------------------------------------
Cloud Services Checklist: Pricing and Packaging Optimization
This white paper is intended to serve as a reference, checklist and point of 
discussion for anyone considering optimizing the pricing and packaging model 
of a cloud services business. Read Now!
http://www.accelacomm.com/jaw/sfnl/114/51491232/
_______________________________________________
IPCop-user mailing list
IPCop-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/ipcop-user
[prev in list] [next in list] [prev in thread] [next in thread]