>From my testing, the default firewall rule you get when you add SSH (via something like system-config-securitylevel) gives you: ... -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 22 -j ACCEPT ...
I'm particular interested in whether I'm interpreting this part incorrectly "-m tcp -p tcp --dport 22". So I'm using the TCP module (-m tcp), and I would assume this is further defined using the destination port (--dport 22). Is the protocol (-p tcp) defined for the entire line or defined for the module? Wouldn't one assume it would have to be "-p tcp -m tcp --dport 22" (or similar) or is iptables smart enough to figure things out and parses the entire line to join the -m with the --dport? Marco _______________________________________________ rhelv5-list mailing list [email protected] https://www.redhat.com/mailman/listinfo/rhelv5-list
