Некоторые хосты не хотят загружатся:
Например "www.dtf.ru","www.nokia.com","www.narod.ru"
#BEGIN##############
# Iptables config
iface_world=eth1
echo "1" > /proc/sys/net/ipv4/ip_forward
iptables -t filter -F
iptables -t filter -X
iptables -t mangle -F
iptables -t nat -F
iptables -t nat -X
iptables -t filter -P INPUT DROP
iptables -t filter -P FORWARD DROP
iptables -t filter -P OUTPUT DROP
iptables -t filter -A INPUT -p icmp -j ACCEPT
iptables -t filter -A FORWARD -p icmp -j ACCEPT
iptables -t filter -A OUTPUT -p icmp -j ACCEPT
iptables -t filter -A INPUT -d 127.0.0.1 -j ACCEPT
iptables -t filter -A OUTPUT -s 127.0.0.1 -j ACCEPT
iptables -t filter -A INPUT -i $iface_world -j ACCEPT
iptables -t filter -A OUTPUT -o $iface_world -j ACCEPT
iptables -t filter -A INPUT -p tcp --sport 53 -j ACCEPT
iptables -t filter -A FORWARD -p tcp --sport 53 -j ACCEPT
iptables -t filter -A FORWARD -p tcp --dport 53 -j ACCEPT
iptables -t filter -A OUTPUT -p tcp --dport 53 -j ACCEPT
iptables -t filter -A INPUT -p udp --sport 53 -j ACCEPT
iptables -t filter -A FORWARD -p udp --sport 53 -j ACCEPT
iptables -t filter -A FORWARD -p udp --dport 53 -j ACCEPT
iptables -t filter -A OUTPUT -p udp --dport 53 -j ACCEPT
iptables -t filter -A INPUT -p tcp -s 192.168.1.1 -d $server0 --dport 21 -j ACCEPT
iptables -t filter -A OUTPUT -p tcp -d 192.168.1.1 -s $server0 --sport 21 -j ACCEPT
iptables -t filter -A INPUT -p tcp -s 192.168.1.1 -d $server0 --dport 22 -j ACCEPT
iptables -t filter -A OUTPUT -p tcp -d 192.168.1.1 -s $server0 --sport 22 -j ACCEPT
iptables -t nat -A POSTROUTING -d 0.0.0.0/0 -j MASQUERADE
#END################
Этим конфигом врубаю юзера по ip:
#BEGIN#############
# User deny
#!/bin/bash
ip=$1
iptables -t filter -A INPUT -s $ip -j ACCEPT
iptables -t filter -A FORWARD -s $ip -j ACCEPT
iptables -t filter -A FORWARD -d $ip -j ACCEPT
iptables -t filter -A OUTPUT -d $ip -j ACCEPT
#END##############
Немогу понять в чем причина
Вариант для распечатки
OpenNET: Виртуальная конференция (Public)
on
08-Дек-05, 14:30 (MSK)
