On Sat, 2006-07-08 at 09:06 -0500, Jason Bradley Nance wrote:
> > iptables -A FORWARD -d chatenabled.mail.google.com -j DROP
>
> IPTABLES doesn't filter based on hostname. You would need some special
> module (assuming it exists) and it for sure isn't part of RHEL/CentOS.
I know nothing about this, always looking to learn and have no qualms
about appearing stupid of foolish. So I went to "the book". "Man
iptables":
-d, --destination [!] address[/mask]
Destination specification. See the description of the -s
(source) flag for a detailed description
...
-s, --source [!] address[/mask]
Source specification. Address can be either a network name, a
hostname (please note that specifying any name to be resolved
with a remote query such as DNS is a really bad idea), a net-
work IP address (with /mask), or a plain IP address.
Question: what am I missing here, since the man page seems to my
ignorant eye to support filters using net and/or host names.
>
> j
> <snip sig stuff>
TIA
--
Bill
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
URL: <http://lists.centos.org/pipermail/centos/attachments/20060708/d2a36b1c/attachment-0005.sig>