You are not logged in.

#1 2013-03-06 09:01:30

mmix
Member
Registered: 2012-10-03
Posts: 42

[TIP] iptables state error

http://blog.yjl.im/2012/11/iptables-sta … e-use.html
http://forums.gentoo.org/viewtopic-t-940302.html

After I remove six lines with -m state, the rules /var/lib/iptables/rules-save were loaded successfully. Don't know why I had those and didn't use to match state actually.

If you used state match, then you need to change it to be

-m conntrack --ctstate [STATELIST]

with kernel configuration NETFILTER_XT_MATCH_CONNTRACK. See man 8 iptables-extensions.

Offline

Board footer

Powered by FluxBB