On Wed, Aug 23, 2006 at 11:51:23 +1000, Mary Gardiner wrote:
> deleted with -D, but only if you know the rule number which, as far as I
> can tell, you work out by running 'iptables -L' and counting the rules
> from the top of the chain.
With '--line-numbers' you don't have to count :-)
> So are people doing this kind of interface specific iptables rules, and
> if so, how are you doing it? Is there a blessed way, or just a bunch of
> ways?
I list the rules & look for the one I want, then delete it by number,
but I've only (so far) needed to do it in one script on one host. You
may be able put the rule into a separate user-defined chain, then simply
flush the chain to delete it (iptables -F chain).
Cheers,
John
--
"... every credible survey which has ever been conducted has concluded
that filtering software is to Internet users what meat-mincers are to
cows ..."
-- Mark Newton
--
SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/
Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
