> I've tried several iptables verions but the results were the same. > > The question: why? :) just first guess. are not you trying to add rules which use DNS or other name system names instead of IP addresses? (before the name system is availaible(notwork down) or after name system become unavailaible(iptables policies and rules))
