User guide
Chapter 13: Command Line Interface
189
IPtables Command
The iptables command is an administration tool for IPv4 packet filtering
and Network Address Translation (NAT). The iptables command
provides an interface to the linux iptables. The command parameters and
options are the same as the linux system command.
iptables Command
Description
-A input
Append one or more rules to specified
chain.
--dport
Destination port.
--flush
Clear the iptables.
-j target
Jump based on the following target
keywords:
ACCEPT - Packet is passed through (i.e.
for INPUT chain, processed by local stack,
for OUTPUT, sent)
DROP -Packet is dropped and no further
processing is performed
LOG -
QUEUE - Passes datagram to user space
(if supported by kernel)
RETURN - Terminates processing by this
chain and resumes the calling chain (or
executes the chain policy if there is no
calling chain)
-list
View the current iptables.
--log-prefix DOM_IPACL
-m state
Load a match extension module.
-p
The protocol of the traffic.
-s
Source address.
-save
Save the IP Tables.
--state NEW <enter rule
to trigger here>
-t filter