I have a few comps running FC2, i want to configure a gateway machine running squid to allow requests only from one other machine on the network to connect to port 3128 . How do i configure iptables to allow only requests from the one other machine and neglect all others.

Currently, its not allowing access to any computer. This is my current config :

  • [root@localhost root]# iptables -L
    Chain INPUT (policy ACCEPT)
    target prot opt source destination
    RH-Firewall-1-INPUT all -- anywhere anywhere

    Chain FORWARD (policy ACCEPT)
    target prot opt source destination
    RH-Firewall-1-INPUT all -- anywhere anywhere

    Chain OUTPUT (policy ACCEPT)
    target prot opt source destination

    Chain RH-Firewall-1-INPUT (2 references)
    target prot opt source destination
    ACCEPT all -- anywhere anywhere
    ACCEPT icmp -- anywhere anywhere icmp any
    ACCEPT ipv6-crypt-- anywhere anywhere
    ACCEPT ipv6-auth-- anywhere anywhere
    ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
    ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:http
    ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:https
    ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:ssh
    REJECT all -- anywhere anywhere reject-with icmp-host-prohibited


PS: i know very little about iptables if at all, so please give me a detailed walkthru of what i need to do.

And Yeah, i tried the iptables script that i found posted on some other relavant iptables thread, but even that allows me to define only bad ips . How about defining good ips explicitly???