iptables-过滤61开头的ip数据包 

iptables -F
root@android:/system/bin # iptables -L -n
iptables -L -n
Chain INPUT (policy ACCEPT)
target     prot opt source               destination

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination
root@android:/system/bin # iptables -A INPUT -p tcp --sport 80 -s 61.0.0.0/8 -j
DROP
-sport 80 -s 61.0.0.0/8 -j DROP                                               <
protoent* getprotobyname(char const*)(3) is not implemented on Android
root@android:/system/bin # iptables -L -n
iptables -L -n
Chain INPUT (policy ACCEPT)
target     prot opt source               destination
DROP       tcp  --  61.0.0.0/8           0.0.0.0/0            tcp spt:80

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination
root@android:/system/bin # iptables -A OUTPUT -p tcp --dport 80 -s 61.0.0.0/8 -j
 DROP
--dport 80 -s 61.0.0.0/8 -j DROP                                              <
protoent* getprotobyname(char const*)(3) is not implemented on Android
root@android:/system/bin # iptables -L -n
iptables -L -n
Chain INPUT (policy ACCEPT)
target     prot opt source               destination
DROP       tcp  --  61.0.0.0/8           0.0.0.0/0            tcp spt:80

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination
DROP       tcp  --  61.0.0.0/8           0.0.0.0/0            tcp dpt:80
root@android:/system/bin #

 

posted on 2015-05-25 18:08  寻步  阅读(557)  评论(0编辑  收藏  举报

Powered by: 博客园 Copyright © 2024 寻步
Powered by .NET 8.0 on Kubernetes