January 2nd, 2002, 07:28 AM
pentium5, have you actually read my quote about /etc/sysconfig/ipchains ? You don't need an extra script, neither mess with /etc/sysconfig/ipchains manually. Just re-init your system to a state where the rules defined in /etc/sysconfig/ipchains are still valid (therefore without your script) and type these three commands:
(I'm not sure about the third line, since I'm not using RedHat.)
ipchains -A input -i eth0 -p tcp -s 220.127.116.11/24 -d 192.168.1.19 0:65535 -j DENY
ipchains -A output -d 18.104.22.168/24 -j REJECT
service ipchains save
What's wrong with your script:
1) It's not neccessary.
2) It flushes the existing rules.
What else is (imho) wrong: plz put screen captures in code tags, too. Makes them easier to read.