Mailinglist Archive: opensuse-security (757 mails)

< Previous Next >
Re: AW: [suse-security] Re: Masquerading unter Kernel 2.4
  • From: Roman Drahtmueller <draht@xxxxxxx>
  • Date: Wed, 9 Jan 2002 14:03:12 +0100 (MET)
  • Message-id: <Pine.LNX.4.43.0201091401190.2498-100000@xxxxxxxxxxxx>
> Thank you for your hint, but the command-line you told doesn't work. The
> system keeps complaining (unknowg arg --dport). I also tried out the long
> version --destination-port with the same result. I looked at the manpage and
> found that iptables should know this argument, so there seems to be a syntax
> error.
> Anyone has an idea what is wrong and how the correct syntax is ?

The syntax is correct. Just move the -j option more to the beginning of
the command line. iptables parses the command line and dlopen()s shared
libraries depending on the options on the command line. If the (filtering)
target is too late, it won't accept the command and bails out. Known bug.

- -
| Roman Drahtmüller <draht@xxxxxxx> // "You don't need eyes to see, |
SuSE GmbH - Security Phone: // you need vision!"
| Nürnberg, Germany +49-911-740530 // Maxi Jazz, Faithless |
- -

< Previous Next >