When I want to start from scratch in my firewall script I usually do this: $IPTABLES -t filter -F $IPTABLES -t mangle -F $IPTABLES -t nat -F $IPTABLES -t filter -X $IPTABLES -t mangle -X $IPTABLES -t nat -X I'm not sure if -Z switch does anything useful after this violent scrubbing of my iptables... $IPTABLES -Z By the way... is this correct/better/wrong?? $IPTABLES -t filter -Z $IPTABLES -t mangle -Z $IPTABLES -t nat -Z I read man page on iptables but it still was not clear if I need -Z to 'reset the byte count' and other stuff like it says it will do. Thanks! Chris
