Hi, uhrm, Grx, when using -m multiport it's: --destination-ports not --destination-port. John. On Sat, 2003-06-21 at 22:10, HdV@DTO.TUDelft.NL wrote: > Hi ppl, > > I have build myself a nice iptables script (well that's what I think > anyway...), but now I have met something that I can't solve by myself. > So I'd like to call upon the list to help me crack this one. > > The rule that is giving me trouble is this one: > > iptables -A OUTPUT -o $PUB_IFACE -p tcp \ > -m multiport --destination-port 443,4030 \ > -s $PUB_IP -m state --state NEW -j ACCEPT > > I wanted to have a source-port specification in there too, but somehow I > had to remove "--source-port $EPHEMERAL_PORTS" (it was immediately after > "-s $PUB_IP") if I wanted to use multiport and still have a > syntactically correct instruction. > > Could someone explain to me what I need to change in this rule to get it > working like I want it to? Or otherwise tell me that I want the > impossible, so I can stop trying `;-) > > Thanks for your time! > > Grx HdV -- GPG KEY: B89C D450 5B2C 74D8 58FB A360 9B06 B5C2 26F0 3047 HTTP: http://www.johnleach.co.uk
Attachment:
signature.asc
Description: This is a digitally signed message part