Michael J McCafferty wrote: > Jim, > Thank you ! I have been working on this in the margins between meetings > today and came up with something very similar.. but haven't tested it. > This gives me more confidence !
I tested it as well, and it worked for me. The remarks about PREROUTING not applying to the loopback interface is worth noting. Heres's something else I made a note to myself, which you may also find useful. On RH-based systems service iptables status gives a nicely formated report, from which one may decide how to compose a delete command, and with which one may confirm the delete. For example iptables -t nat -D PREROUTING 1 deletes rulenum 1 in the nat table of the PREROUTING block (is 'block' the right term?) Regards, ..jim -- [email protected] http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list
