On Mon, 10 Dec 2001 14:24:14 +1100 Tarragon Allen <[EMAIL PROTECTED]> wrote:
> On Mon, 10 Dec 2001 14:27, Mark Weaver wrote: > > Hi List > > > > It was my understanding that with the latest version of Iptables "--dport" > > which is an alias for "--destination-port" is a legal argument. However, > > when i attempt to add the below into the ruleset of iptables, > > > > iptables -A INPUT -s 199.224.86.15 --dport 53 -j ACCEPT > > > > ...this is what is returned. > > > > iptables v1.2.4: Unknown arg `--dport' > > Try `iptables -h' or 'iptables --help' for more information. > > Try: > > iptables -A INPUT -p tcp -s 199.224.86.15 --dport 53 -j ACCEPT > > or > > iptables -A INPUT -s 199.224.86.15 -d any --dport 53 -j ACCEPT > > or > > iptables -A INPUT -p tcp -s 199.224.86.15 -d any --dport 53 -j ACCEPT > > One of those should work. I think the first one will ; you need to specify > the protocol (tcp/udp) when defining ports. > > t > > > -- > PGP key : http://n12turbo.com/tarragon/public.key > > t, adding the "-p" (protocol) was the missing link. why in the world didn't iptables just say that's what it was missing instead of the generic error message it was giving me? thanks so much. firewall happy now. user is too! :) just wish someone would respond to my post about postfix... -- daRcmaTTeR =/\=??? |%C++ Registered Linux User # 186492 "We love and desire the things most that will kill us!"
Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
