...

...

...

...

"Teddy" == Teddy Mills <teddymills-VFlxZYho3OA at public.gmane.org> writes:

Teddy> This statement in the script gives a chain/target/match Teddy> error. /sbin/iptables -A INPUT -m state -p tcp --state Teddy> ESTABLISHED,RELATED -j ACCEPT Usually that means the the kernel does'nt have the neccessary ipfilter options set. I don't know how to get an error message that specifies exactly which options. I'd check the Netfilter Configuration section of the kernel config, eg CONFIG_IP_NF_MATCH_STATE. If they are configured as modules, you may need to use modprobe to load them earlier in the firewall script. Regards, Ed -- Edward F. McCurdy, | efmccurdy-bJEeYj9oJeDQT0dZR+AlfA at public.gmane.org -- The Toronto Linux Users Group. Meetings: http://tlug.ss.org TLUG requests: Linux topics, No HTML, wrap text below 80 columns How to UNSUBSCRIBE: http://tlug.ss.org/subscribe.shtml