[wellylug] iptables question

Enkidu enkidu at cliffp.com
Sat Mar 27 22:33:20 NZST 2004


On Sat, 27 Mar 2004 20:36:25 +1200, you wrote:

>Hi all,
>
>If I have, for example:
>
>iptables -N combined
>iptables -A INPUT -j combined
>iptables -A FORWARD -j combined
>
>does this
>
>iptables -A combined -o !+ -j ACCEPT
>
>make sense?
>
>I'm trying to match only input stuff, after I've combined the two
>chains. Obviously, if that was all I had, it would be silly; I have
>rather more than that above - and more levels of chains.
>
>If that won't work, is there any other way to detect whether a packet is
>to be routed or not, once it's out of the default chains?
>
>Any suggestions appreciated.
>
How about 

iptables -A combined -o ! eth+ -j ACCEPT ??

I've no idea if it would work, though!

Cheers,

Cliff




More information about the wellylug mailing list