[Tfug] iptables puzzle
ewf
erich1 at dakotacom.net
Fri Nov 11 18:20:20 MST 2005
Thanx,
I'll check that out. Yes, INPUT/OUTPUT are alive & well
The line I gave in the 1st email works OK on the other box,
(the one I'm using to send this e-mail), but host sage is the
machine with the problem.
Erich
Adrian wrote:
>On Thursday 10 November 2005 20:41, ewf wrote:
>[snip]
>
>
>>Namely:
>>sage:~# iptables -A INPUT -m state --state ESTABLISHED -j ACCEPT
>>
>>I get:
>>iptables: No chain/target/match by that name
>>
>>
>>
>
>Well.... I assume that iptables is actually running so the INPUT/OUTPUT/etc.
>chains actually exist.... do a iptables -nvL to confirm.
>
>If so, then I think you are required to give an interface for the state to be
>effective. I have this on my firewall for this purpose:
>
>-A INPUT -i eth0 -m state --state RELATED,ESTABLISHED -j ACCEPT
>
>Adrian
>_______________________________________________
>tfug mailing list
>tfug at tfug.org
>http://www.tfug.org/mailman/listinfo/tfug
>
>
>
More information about the tfug
mailing list