[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: iptables filter rules Question??



Incoming from fbrian@nac.net:
> [s. keeling:]
> >
> > I use exactly the same rule here:
> >
> >   iptables -A INPUT -i ppp0 -m state --state ESTABLISHED,RELATED -j ACCEPT
> 
> EULER:~# iptables -A INPUT -i ppp0 -m state --state ESTABLISHED,RELATED -j
> ACCEPT
> iptables: No chain/target/match by that name
> EULER:~#

As I say, I use the same rule (direct cut+paste from my script):

  iptables -A INPUT -i ppp0 -m state --state ESTABLISHED,RELATED -j ACCEPT

All I can say is this:

   ----------------------------------------------------------
ii  iptables  1.2.6a-5  IP packet filter administration tools for 2.4.4+ ker
   ----------------------------------------------------------

and this:

   ----------------------------------------------------------
(0) root /root_ iptables -nvL
Chain INPUT (policy ACCEPT 80543 packets, 9554K bytes)
 pkts bytes target     prot opt in     out     source               destination         
   84  4606 ACCEPT     tcp  --  ppp0   *       0.0.0.0/0            0.0.0.0/0          tcp dpt:113 
  374 23156 LOG        all  --  *      *      !127.0.0.1            0.0.0.0/0          state NEW LOG flags 0 level 4 
  374 23156 DROP       all  --  *      *      !127.0.0.1            0.0.0.0/0          state NEW 
12452 9614K ACCEPT     all  --  ppp0   *       0.0.0.0/0            0.0.0.0/0          state RELATED,ESTABLISHED 

Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
 pkts bytes target     prot opt in     out     source               destination         

Chain OUTPUT (policy ACCEPT 570 packets, 47066 bytes)
 pkts bytes target     prot opt in     out     source               destination         
34743 3391K ACCEPT     all  --  *      *       0.0.0.0/0            0.0.0.0/0          state NEW,RELATED,ESTABLISHED 
   ----------------------------------------------------------

If you're not running stable, check the man page.  Maybe they've
renamed something since Woody.


-- 
Any technology distinguishable from magic is insufficiently advanced.
(*)               http://www.spots.ab.ca/~keeling 
- -



Reply to: