From: Pascal Vilarem <pascal.vilarem@9online.fr>
To: netfilter@lists.netfilter.org
Subject: Re: iptables newbie
Date: Thu, 11 Sep 2003 16:28:09 +0200 [thread overview]
Message-ID: <3F608679.4010508@9online.fr> (raw)
In-Reply-To: <20030911134133.91316.qmail@web20711.mail.yahoo.com>
you could have run the equivalent iptables command lines of each line in
order to
find the wrong one by yourself :-(
for your problem, try to write the last line using -m parameter:
-A PREROUTING -p tcp -m tcp --dport 80 -j REDIRECT --to-port 3128
or check your RH-Lokkit-0-50-INPUT definition.
hope this can help,
Pascal.
ads nat wrote:
> Hi,
> I have Linux REDHAT 8.0 server. Iptables are installed while
> installing Linux 8.0. version 1.2.6a
>
> I am getting following error.
>
> [root@xyz root]# /etc/init.d/iptables restart
> Flushing all current rules and user defined chains: [ OK ]
> Clearing all current rules and user defined chains: [ OK ]
> Applying iptables firewall rules: iptables-restore v1.2.6a: Unknown
> arg `--dport'
> Try `iptables-restore -h' or 'iptables-restore --help' for more
> information.
> [FAILED]
>
> In iptables file i have used :
> *filter
> -A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 0:1023 --syn -j REJECT
> -A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 2049 --syn -j REJECT
> -A RH-Lokkit-0-50-INPUT -p udp -m udp --dport 0:1023 -j REJECT
> -A RH-Lokkit-0-50-INPUT -p udp -m udp --dport 2049 -j REJECT
> -A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 6000:6009 --syn -j REJECT
> -A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 7100 --syn -j REJECT
> COMMIT
> *nat
> -A PREROUTING -p TCP --dport 80 -j REDIRECT --to-port 3128
> COMMIT
>
> Do i have to install any additional module.
> Thanks
>
>
> ------------------------------------------------------------------------
> Do you Yahoo!?
> Yahoo! SiteBuilder
> <http://us.rd.yahoo.com/evt=10469/*http://sitebuilder.yahoo.com> -
> Free, easy-to-use web site design software
next prev parent reply other threads:[~2003-09-11 14:28 UTC|newest]
Thread overview: 11+ messages / expand[flat|nested] mbox.gz Atom feed top
2003-09-11 13:41 iptables newbie ads nat
2003-09-11 14:28 ` Pascal Vilarem [this message]
-- strict thread matches above, loose matches on Subject: below --
2003-12-27 13:31 Johan Cimen
2003-12-27 14:50 ` John A. Sullivan III
2003-12-27 17:05 ` Johan Cimen
2003-12-27 19:09 ` Iced Tea
2003-12-27 19:16 ` Johan Cimen
2003-12-28 1:53 ` Mark E. Donaldson
2003-12-27 21:26 ` Johan Cimen
2002-09-12 7:05 binding nntp to one interface Rasmus Reinholdt Nielsen
2002-09-12 10:22 ` Antony Stone
2002-09-12 11:31 ` IPTABLES NewBie HareRam
2002-09-12 13:54 ` Antony Stone
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=3F608679.4010508@9online.fr \
--to=pascal.vilarem@9online.fr \
--cc=netfilter@lists.netfilter.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.