![](https://seccdn.libravatar.org/avatar/3c0770d2df6d972c96473f43f0e858ee.jpg?s=120&d=mm&r=g)
I have set-up a range of udp ports to be opened in the firewall, but cannot verify if they are really open. I thought iptables -L |grep udp will show me, but instead it shows: ACCEPT udp -- anywhere anywhere udp dpts:ndmp:dnp ACCEPT udp -- anywhere anywhere udp dpt:sip LOG udp -- anywhere anywhere limit: avg 3/min burst 5 LOG level warning tcp-options ip-options prefix `SFW2-INext-DROP-DEFLT ' REJECT udp -- anywhere anywhere reject-with icmp-port-unreachable what does above mean? I want to have open udp 30000 to 31000. How can I do it and verify? bye Ronald
![](https://seccdn.libravatar.org/avatar/814f1c9f82898e057fe8d46a106381fd.jpg?s=120&d=mm&r=g)
I thought iptables -L |grep udp will show me, but instead it shows:
Use the holy -n option.
OK, Jan, I'll bite. WTF is the "holy -n" option?
`man iptables` -n, --numeric Numeric output. IP addresses and port numbers will be printed in numeric format. By default, the program will try to display them as host names, network names, or services (whenever applicable). In other words, it will print 3128 instead of ndl-aas. Jan Engelhardt --
participants (3)
-
Jan Engelhardt
-
Ronald Wiplinger
-
Stevens