Hello... When you use iptables-save and it saves your ruleset to /etc/sysconfig/iptables, it put's things like [0:0] in front of each rule where those are not always zeros. What is the significance of these numbers? Can I remove this part of the lines?
Previously when I've wanted to change my ruleset I've had a shell script with all the iptables commands in it, I ran that (it flushed the various chains first), and then if all worked, I ran iptables-save. But this is a bit inneffeciant. I'd like to be able to use /etc/sysconfig/iptables. So I guess my questions are: 1. What do the numbers mean? 2. Can I remove the various [n:n]'s (even in the cases where it appears at the end) 3. Why are there various COMMIT statements in the file? Will a single one at the end do? A few years ago I used to just replace the ipchains init script with my own shell script, but the current iptables shell script does a lot of stuff, and I like to do things the standard way if possible. I must say I still think there should be a user-editable config file where one can sture rules. The command line interface is a must obviously, but a "iptables --file iptables.conf" should be available as well. The file made by iptables-save doesn't seem to be friendly towards admin-editing. Thanks all, Phil -- Insanity Palace of Metallica http://www.ipom.com [EMAIL PROTECTED] --
