Sorry, if I have not made myself clear. I want to block certain ip addresses which must not use these limited fast interfaces. I tried setting firewall rules in the FORWARD chain as follows, but no success. These interfaces are allowing any website calls to go through, instead of blocking them, when they become active in failover mode.
How do I block them ? What chain should I use ? NAT is enabled on these ppp interfaces.
Chain: FORWARD Default Policy ACCEPT
Seq Input Output Description Log Active
1 ETH00 ppp2 REJECT all opt — in ETH00 out ppp2 0.0.0.0/0 !-> reject-with icmp-port-unreachable no
2 ETH00 ppp3 REJECT all opt — in ETH00 out ppp3 0.0.0.0/0 !-> reject-with icmp-port-unreachable no
Here is a genuine ip address of our remote application server. Thank you for any assistance.