iptables-过滤61开头的ip数据包

iptables -F
root@android:/system/bin # iptables -L -n
iptables -L -n
Chain INPUT (policy ACCEPT)
target     prot opt source               destination

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination
root@android:/system/bin # iptables -A INPUT -p tcp --sport 80 -s 61.0.0.0/8 -j
DROP
-sport 80 -s 61.0.0.0/8 -j DROP                                               <
protoent* getprotobyname(char const*)(3) is not implemented on Android
root@android:/system/bin # iptables -L -n
iptables -L -n
Chain INPUT (policy ACCEPT)
target     prot opt source               destination
DROP       tcp  --  61.0.0.0/8           0.0.0.0/0            tcp spt:80

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination
root@android:/system/bin # iptables -A OUTPUT -p tcp --dport 80 -s 61.0.0.0/8 -j
 DROP
--dport 80 -s 61.0.0.0/8 -j DROP                                              <
protoent* getprotobyname(char const*)(3) is not implemented on Android
root@android:/system/bin # iptables -L -n
iptables -L -n
Chain INPUT (policy ACCEPT)
target     prot opt source               destination
DROP       tcp  --  61.0.0.0/8           0.0.0.0/0            tcp spt:80

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination
DROP       tcp  --  61.0.0.0/8           0.0.0.0/0            tcp dpt:80
root@android:/system/bin #

 

posted on 2015-05-25 18:08  寻步  阅读(559)  评论(0编辑  收藏  举报