On Monday 16 December 2002 11:25 am, cees-bart wrote: > hi all, > -A OUTPUT -d MYMACHINE -p udp -m udp --dport 27960 -j DNAT \ > --to-destination OTHERMACHINE:30000 > this setup works fine on kernel 2.4.19 with iptables 1.2.6a. > > BUT, the last rule (OUTPUT) fails with message "iptables: Invalid > argument" when running under 2.4.20. > > i tried iptables 1.2.7a as well, but the result is the same. > > am i doing something wrong? Have you tried manually creating the rule, or are you restoring from a save made with the earlier version? Since you list it in a save format, (dated November 12) and said it won't load, this strikes me as likely. I don't know, but it's possible this won't work. Just try a: /sbin/iptables -t nat -A OUTPUT -d MYMACHING -p udp --dport 27960 \ -j DNAT --to OTHERMACHINE:30000 and see if it accepts it. If so, then there must have been some change in the save file structure or handling (possibly fixing a flaw) that prevents newer netfilter form restoring from the older save. If you require the ability to use the same save under both versions, it's possible that saving from the new will be restorable in the old, even if the reverse turns out to be broken. j
