I googled your question verbatim and this was the 2nd result:

http://serverfault.com/questions/161401 … h-iptables">http://serverfault.com/questions/161401/how-to-allow-a-range-of-ips-with-iptables

The order of your rules depend strictly on which order you want them processed. Being an IP filter, it can go at the beginning.

Let me know if I can help you more.

So at the beginning I have to do something like:

iptables -A INPUT -i eth1 -s 10.50.0.0/16 -j ACCEPT

Ok.

1 how do I know what goes after -i (the eth1 part). How do I know if it's eth1 or eth0?

-s can be a straight ip without subnet?

That's all I need?

@arachn1d:

So at the beginning I have to do something like:

iptables -A INPUT -i eth1 -s 10.50.0.0/16 -j ACCEPT

Ok.

1 how do I know what goes after -i (the eth1 part). How do I know if it's eth1 or eth0?

-s can be a straight ip without subnet?

That's all I need?

If you look at the iptables manual you will find -i and -s in the PARAMETERS section. It should explain how these two options work in detail.

You can use "ip link" to list the interfaces on your server and find out which one should be added after -i.

If you're going to open up /16 ranges - why bother locking it down?

I only want to allow one ip but I can't seem to figure it out. :(

If you want step by step, it'd help if you told people what Distro you're using.