NetFilter
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Accept DNS Suffix

from [Jan Engelhardt] [Permanent Link][Original]
To: Dominic Caputo <jec6jec6@gmail.com>
Subject: Re: Accept DNS Suffix
From: Jan Engelhardt <jengelh@linux01.gwdg.de>
Date: Tue, 20 Mar 2007 17:42:00 +0100 (MET)
Cc: netfilter@lists.netfilter.org
Delivered-to: sp-com-lists@consult.net
Delivered-to: netfilter-list1@securepoint.com
In-reply-to: <000f01c76a83$f8563dd0$6f05b00a@au.schpac.local>
List-archive: </pipermail/netfilter>
List-help: <mailto:netfilter-request@lists.netfilter.org?subject=help>
List-id: General discussion and user questions <netfilter.lists.netfilter.org>
List-post: <mailto:netfilter@lists.netfilter.org>
List-subscribe: <https://lists.netfilter.org/mailman/listinfo/netfilter>, <mailto:netfilter-request@lists.netfilter.org?subject=subscribe>
List-unsubscribe: <https://lists.netfilter.org/mailman/listinfo/netfilter>, <mailto:netfilter-request@lists.netfilter.org?subject=unsubscribe>
References: <000f01c76a83$f8563dd0$6f05b00a@au.schpac.local>
Sender: netfilter-bounces@lists.netfilter.org 
On Mar 20 2007 11:08, Dominic Caputo wrote:
>
> I currently have an ISP that has multiple address ranges that I
> wish to accept in my iptables ruleset. Is it possible for me to use
> the DNS Suffix instead of the actual ip as they are currently
> dynamically assigned. e.g. iptables -s nsw.bigpond.net.au (current
> assigned address is cpe-203-45-103-100.nsw.bigpond.net.au).

Not possible*. iptables is handling ip, not dns.

> Alternatively if the above is not available would I be able to
> setup a dyndns account and get my dsl modem to update the account
> and within my iptables config set: iptables -s homegw.dynalias.com

See your distro documentation. openSUSE for example accepts custom
scripts in /etc/sysconfig/network/if-up.d with which you can call
iptables after dial-in. Anyway, not really a netfilter issue.


* I refrain from posting possibilities that would end up as Layering
Violations. Also, this would be prone to either (a) deadlock or (b)
slipthrough.


Jan
--
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Accept DNS Suffix, Dominic Caputo
Next by Date:  Re: Accept DNS Suffix, Cedric Blancher
Previous by Thread:  Accept DNS Suffix, Dominic Caputo
Next by Thread:  RE: Accept DNS Suffix, Rob Sterenborg
Indexes:  [Date] [Thread] [Top] [All Lists]