Unexpected iptables behavior in FC5
Mike Wright
ebwximaurm at mailinator.com
Tue Mar 21 20:51:39 UTC 2006
Stanton Finley wrote:
> When trying to set up a port range for bittorrent using the commands (as
> root):
>
> /sbin/iptables -I INPUT -p tcp --destination-port 6881:6999 -j ACCEPT
>
> and then:
>
> /sbin/iptables-save > /etc/sysconfig/iptables
>
> and then listing iptables with:
>
> /sbin/iptables -L
>
> I get:
>
> ACCEPT tcp -- anywhere anywhere tcp
> dpts:6881:iatp-normalpri
>
> as part of the output. This does not seem to include the port range
> 6881:6999 but only port 6881 and I've never seen "iatp-normalpri" on
> previous FC versions.
>
> Does anyone have any insight as to what's going on here?
Hi Stanton,
This is not an iptables error. 6999 really is defined as iapt-normalpri.
Prior to v3.2 bittorrent was restricted to 6881:6889. Since v3.2 the
allowed port range is 6881:6999.
If you'd prefer not seeing the standard port names or resolved dns names
use iptables -n [...] to restrict output to numeric values.
hth,
mike wright :m)
More information about the fedora-list
mailing list