BLU Discuss list archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

iptables question

Subject: iptables question
From: me-5yx05kfkO/aqeI1yJSURBw at public.gmane.org (Matthew Gillen)
Date: Fri, 23 Oct 2009 19:40:01 -0400
In-reply-to: <874757.19563.qm-V7BkTA9pGrU/JfqJOfUXs/u2YVrzzGjVVpNB7YpNyf8@public.gmane.org>
References: <874757.19563.qm@web110710.mail.gq1.yahoo.com>

On 10/23/2009 04:13 PM, Dave Peters wrote:
> Is there anyway to use iptables blocking domain name not IP address?
> 
> Example to block hotmail.com.
> 
> I tried this iptables -A FORWARD -d hotmail.com -j REJECT and it won't work.

No.  iptables will just do a DNS lookup on that and convert it to an ip
address, then add a rule.  The problem is that high-volume, load-balanced
domains won't have a single ip address.  And it certainly wouldn't work to
try and block anything under the hotmail domain.

What is it that you're trying to do?  There might be an easier way...

Matt

References:
- iptables question
  - From: gameslover987-/E1597aS9LQAvxtiuMwx3w at public.gmane.org (Dave Peters)

Prev by Date: iptables question
Next by Date: How I put Linux and Windows windows together on my Windows desktop (Re: Boston Linux Meeting Wed, October 21, 2009...)
Previous by thread: iptables question
Next by thread: iptables question
Index(es):
- Date
- Thread


BLU is a member of BostonUserGroups
We also thank MIT for the use of their facilities.

Boston Linux & Unix / webmaster@blu.org