On Tue, 2003-12-23 at 08:37, ads nat wrote: > I modified rules as follows : > > ########### > -A INPUT -p tcp ! --tcp-flags SYN SYN -m state --state > NEW -j LOG --log-prefix " New not syn: " <snip> > Applying iptables firewall rules: iptables-restore > v1.2.6a: Unknown arg `--tcp-flags' Well this could be your problem. Try upgrading to 1.2.8 or later. Could be the option is not supported in older version, especially as an inverse. To isolate whether its your script or a version issue, try running the iptables command straight from the command line and see if you get the same error. HTH, C
