block portmap & allow only from 1 IP

[asmar]

Hi all,

I've got at the datacenter firewall 2 rules to allow everything. Then I created a rull to block tcp port 111 which works fine.
How can I create a rule to allow tcp 111 only for one single IP?

I've tried a few things over the gui but I'm missing something.

Any help is much appreciated.

Thanks

 

[LnxBil]

Create a rule that accepts the port on an ip before the port is blocked. First rule to fire drops the package from the firewall rule processing (on this simple matter in -t filter).