How iptables may be handy vs attacks at LAN

view full story

http://serverfault.com – I need some advice on examples of attacks at LAN where iptables may come handy giving some extra security. I've found lots of examples how to secure single host with iptables also with examples including scannings ports, attacking using ICMP-flood, TCP-flood where there was easy to see results with wireshark, tcpdump and on bandwith, but I am not able to find a way to perform similar things with attacker outside LAN. I've also tried to use ettercap which seems very powerful tool but dont know what type of attacks or what scenarios should I test vs iptables. (HowTos)