Dear All,
I'm trying to do the following with my firewall:
1) redirect all web traffic to my gateway until a user is authenticated.
2) after authentication, add their ip to those allowed to surf.
I've achieved point 1 with the following iptables rule:
iptables -t nat -A PREROUTING -s 192.168.1.0/24 -p tcp --dport 80 -j DNAT --to 192.168.1.1
What I want to do now is on a per-ip basis drop this rule... but I can't find the syntax to do it... ideas?
I'm trying to do the following with my firewall:
1) redirect all web traffic to my gateway until a user is authenticated.
2) after authentication, add their ip to those allowed to surf.
I've achieved point 1 with the following iptables rule:
iptables -t nat -A PREROUTING -s 192.168.1.0/24 -p tcp --dport 80 -j DNAT --to 192.168.1.1
What I want to do now is on a per-ip basis drop this rule... but I can't find the syntax to do it... ideas?