From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <sass@uustoll.ee>
Date: Sat, 9 Mar 2002 22:00:00 +0200
From: Aleksandr Blohin <sass@uustoll.ee>
To: sisyphus@altlinux.ru
Message-Id: <20020309220000.7c91f6e1.sass@uustoll.ee>
In-Reply-To: <20020309195138.BE9CE2B790@VL3143.spb.edu>
References: <20020309134847.741B19276@VL3143.spb.edu> <20020309194356.0d61e602.sass@uustoll.ee>
	<20020309195138.BE9CE2B790@VL3143.spb.edu>
X-Mailer: stuphead ver. 0.5.5 (Alternative-cvs) (GTK+ 1.2.10; Linux 2.4.18-alt1-sass; i686)
Mime-Version: 1.0
Content-Type: text/plain; charset="KOI8-R"
Content-Transfer-Encoding: 8bit
Subject: [sisyphus] =?KOI8-R?B?UmU6IFtzaXN5cGh1c10gUmU6IFtzaXN5cGh1c10g7sHT1NLPysvBINzMxc3FztTB0s7Px88gzcHTy8HSwcTB?=
Sender: sisyphus-admin@altlinux.ru
Errors-To: sisyphus-admin@altlinux.ru
X-BeenThere: sisyphus@altlinux.ru
X-Mailman-Version: 2.0
Precedence: bulk
Reply-To: sisyphus@altlinux.ru
List-Help: <mailto:sisyphus-request@altlinux.ru?subject=help>
List-Post: <mailto:sisyphus@altlinux.ru>
List-Subscribe: <http://altlinux.ru/mailman/listinfo/sisyphus>,
	<mailto:sisyphus-request@altlinux.ru?subject=subscribe>
List-Id: <sisyphus.altlinux.ru>
List-Unsubscribe: <http://altlinux.ru/mailman/listinfo/sisyphus>,
	<mailto:sisyphus-request@altlinux.ru?subject=unsubscribe>
List-Archive: <http://altlinux.ru/pipermail/sisyphus/>
Archived-At: <http://lore.altlinux.org/sisyphus/20020309220000.7c91f6e1.sass@uustoll.ee/>
List-Archive: <http://lore.altlinux.org/sisyphus/>

On Sat, 9 Mar 2002 22:51:37 +0300
Vitaly Lipatov <LAV@VL3143.spb.edu> wrote:

VL> On 9 March 2002 20:43, Aleksandr Blohin wrote:
>> EXTIF=ppp+
VL> я написал здесь ppp0
>>
>> ANY=0.0.0.0/0
>> localnet="192.168.0.0/24"
>> firewallhost="192.168.0.8/32"
>> localhost_localdomain="127.0.0.1/32"
>>
>> iptables -P INPUT ACEPT
>> iptables -P OUTPUT ACCEPT
>> iptables -P FORWARD DROP
>>
>> iptables -F INPUT
>> iptables -F OUTPUT
>> iptables -F FORWARD
>>
>> # Deny TCP and UDP packets to privileged ports
>> iptables -A INPUT -i $EXTIF -d $ANY -p udp -dport 0:1023  -j DROP
>> iptables -A INPUT -i $EXTIF -d $ANY -p tcp -dport 0:1023 -j DROP
>> #-----------------------------------------------------------------
VL> Эти строчки выдают следующее:
VL> iptables: Bad policy name
VL> iptables v1.2.5: multiple -d flags not allowed
VL> Try `iptables -h' or 'iptables --help' for more information.
VL> iptables v1.2.5: multiple -d flags not allowed
VL> Try `iptables -h' or 'iptables --help' for more information.
VL> [root@lav rc.d]#

Сорри!
Очепятка :)
Там где -dport должно быть --dport
Подправьте.

--
Best regards
AB
--
				... In nomine Altli, et Ctrli, et Spititus Deli, Reset!