Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in

  FAQ | Search | Memberlist | Usergroups | Statistics | Profile | Log in to check your private messages | Log in | Register

iptables-save incorrect output?
 View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Networking & Security
View previous topic :: View next topic  
Author Message
phong
Bodhisattva
Bodhisattva


Joined: 16 Jul 2002
Posts: 778
Location: Michigan - 15 & Ryan
PostPosted: Mon Aug 19, 2002 7:56 pm    Post subject: iptables-save incorrect output? Reply with quote
I'm having a strange problem with iptables-save... One of my rules is the following:
Code:
-A INPUT -i eth0 -p tcp --dport 4200 -j DROP

BUT, when iptables-save runs (typically when the computer in question shuts down), it saves it as:
Code:
-A INPUT -i eth0 -p tcp -m tcp --dport 4200 -j DROP

iptables-restore chokes when it sees that (says 4200 is an invalid argument). Why is it adding the "-m tcp" part? Is my understanding of iptables flawed? Right now, as a quick hack, I've modified /etc/init.d/iptables to filter out the offending bits when saving the rules, but that's just a hack and I'd like to find a real fix.
_________________
"An empty head is not really empty; it is stuffed with rubbish. Hence the difficulty of forcing anything into an empty head."
-- Eric Hoffer
Back to top
View user's profile Send private message
sschlueter
Guru
Guru


Joined: 26 Jul 2002
Posts: 578
Location: Dortmund, Germany
PostPosted: Mon Aug 19, 2002 11:52 pm    Post subject: Re: iptables-save incorrect output? Reply with quote
phong wrote:

iptables-restore chokes when it sees that (says 4200 is an invalid argument). Why is it adding the "-m tcp" part?


Seems to be a bug. Same problem here using Gentoo+iptables 1.2.7 and Mandrake+iptables 1.2.5.
Back to top
View user's profile Send private message
bert
n00b
n00b


Joined: 20 Jun 2002
Posts: 11
Location: Amsterdam
PostPosted: Fri Aug 23, 2002 12:26 am    Post subject: Reply with quote
I'm pretty sure this is an iptables-1.2.7 problem. Just emerge iptables-1.2.6a, that doesn't have this problem. Might be nice if iptables-1.2.7 could be masked...
Back to top
View user's profile Send private message
Abandon
n00b
n00b


Joined: 18 May 2002
Posts: 33
Location: Madison, WI
PostPosted: Sat Aug 24, 2002 4:08 am    Post subject: Reply with quote
I encountered the same problem the first time I rebooted after installing iptables 1.2.7. I unmerged 1.2.7 and emerged 1.2.6a-r1 and all is now well.
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Networking & Security All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



 Links: forums.gentoo.org | www.gentoo.org | bugs.gentoo.org | wiki.gentoo.org | forum-mods@gentoo.org

Copyright 2001-2024 Gentoo Foundation, Inc. Designed by Kyle Manna © 2003; Style derived from original subSilver theme. | Hosting by Gossamer Threads Inc. © | Powered by phpBB 2.0.23-gentoo-p11 © 2001, 2002 phpBB Group
Privacy Policy