User guide

ManualsBrandsRaritan ManualsComputer equipmentDOMINION SX -

221

222

223

224

225

226

227

228

229

230

Security Commands

204

IPtables Command

TheiptablescommandisanadministrationtoolforIPv4packetfiltering

andNetworkAddressTranslation(NAT).Theiptablescommand

providesaninterfacetothelinuxiptables.Thecommandparametersand

optionsarethesameasthelinuxsystemcommand.

Theiptablescommandoptionsaredescribedinthefollowingtable.

Command Description

‐Ainput Appendoneormorerulestospecified

chain.

‐‐dport Destinationport

‐‐flush Cleartheiptables

‐jtarget Jumpbasedonthefollowingtarget

keywords:

ACCEPT‐Packetispassedthrough(i.e.for

INPUTchain,processedbylocalstack,for

OUTPUT,sent)

DROP‐Packetisdroppedandnofurther

processingisperformed

LOG‐

QUEUE‐Passesdatagramtouserspace(if

supportedbykernel)

RETURN‐Terminatesprocessingbythis

chainandresumesthecal

lingchain(or

executesthech

ainpolicyifthereisno

callingchain)

‐list Viewthecurrentiptables.

‐‐log‐prefixDOM_IPACL 

‐mstate Loadamatchextensionmodule.

‐p Theprotocolofthetraffic.

‐s Sourceaddress

‐save SavetheIPTables.

‐‐stateNEW<enterruleto

triggerhere>



‐tfilter