[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: iptables doesn't work with mulitport module



** Reply to message from Tony Nugent <tony linuxworks com au> on Mon, 03 Mar 2003 18:41:18 +1000


> On Mon Mar 03 2003 at 18:05, Tony Nugent wrote:
> 
> > I'm trying to use the multiport match module with iptables to do
> > something like this:
> > 
> > $ iptables -A INPUT -m tcp -p tcp -m multiport --destination-port 20,21,22,25
> > iptables v1.2.5: invalid TCP port/service `20,21,22,25' specified
> > Try `iptables -h' or 'iptables --help' for more information.
> 
> Never mind... the documentation is incorrect:
> 
> >    multiport
> 
> >        --destination-port [port[,port]]
> >               Match if the destination port is one of the given ports.
> 
> The correct option is "--destination-ports", that works (great).
> Similar with "--source-ports" and "--ports", they need to be plural
> (and that makes a lot of senses).
> 
> BTW, this differentiates it from "--destination-port" which is an
> option to the -p tcp -m tcp match module.
> 
> It's a bad bug in the documentation (I hope the maintainers know
> about it).

Yep, remember tripping on this one, too.....

jb





[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]