13,420
edits
Changes
no edit summary
|- valign="top"
|width="10%" | '''-p tcp'''
| | tells iptables to only match TCP packets. Alternately, the protocol could be set to '''udp''', '''icmp''', or '''all'''
|- valign="top"
|width="10%" |'''-s0/0'''
| |specifies the source IP address. 0/0 means a source address of “anywhere.” this has been put into the lab because your ip address will change because it is dynamically assigned. You can change this value if you want to the IP address that has been specifically assigned to your PC
|- valign="top"
|width="10%" |'''-d0/0'''
| |specifies the destination address. It makes sense that this address is set to “anywhere” because if we want to block all requests to the WWW, we will never know the specific IP address of web server that is trying to be accessed
|- valign="top"
|width="10%" |'''-j'''
| |means when condition is met, then jump to a particular target – Basic targets are '''ACCEPT''', '''DROP''', '''REJECT''', and '''LOG'''. The available targets depend on which table contains the chain