Mmmmm, i have a lot of rules set and one of them is :
ipchains -A input -s $CLASS_C -j DENY

Well i don't really want to deny access to all class c address. I have 3 pc's using 3 of this address. Do there is a way to deny to all this class c but not the 3 i am using?

Nandy

Sure,
After your deny rule add an accept rule for your clients.

ipchains -A input -s x.x.x.x -j accept
ipchains -A output -d x.x.x.x -j accept

where x.x.x.x is the IP's you want to allow.

Or if the client reside on your lan make your internal interface accept from the class C while the external rejects class C.

Not sure if that last one would work but you could try it.

I'm assuming you have it set up so that your Linux system has two network interfaces, and computers on the internal interface have 192.168.* IPs. In that case, just block the class c reserved range on the external interface only, not on the internal.

Thanks guys, i will chk ipchains to learn how to do that...

Nandy