iptables drop output on given interface
I've got a desktop with two NICS eth0 & eth1. eth0 has an ip and is the in/out access to the desktop. eth1 has no ip, it is listening to traffic coming in from a cable modem. I want to use iptables to drop all output packets from this interface and allow output from eth1 but when I try:
I get the error, "iptables v1.2.11: Can't use -i with OUTPUT"
iptables -A OUTPUT -i eth1 -j DROP
So, I figure that I could set the default output policy to DROP and then allow output from the ip given to eth0. Is this gonna work and is it a feasible solution?