Ahh... The format of the example is skewiff. It should read: # Generated by iptables-save v1.2.11 on Mon Mar 7 22:18:56 2005 EXT_INTERFACE="eth0" *filter .... EXT_INTERFACE="eth0" being the variable noted in the original email. Regards -----Original Message----- From: R. DuFresne [mailto:dufresne@xxxxxxxxxxx] Sent: Tuesday, 8 March 2005 9:31 PM To: Veena Etcell Subject: Re: Adding variables to iptables file -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 What variable? <inline> On Tue, 8 Mar 2005, Veena Etcell wrote: > Hi, > > I am hoping someone can help with the following: > I am at a point where I require advice/direction with regards to adding > variables (manually or otherwise) to a standard iptables file. > I am not sure how to add them/where to add them or the syntax that is > required. > > In the example below I have manually added one variable (Line 2) to see > would happen to /etc/sysconfig/iptables (Redhat FC3 install). > > When I iptables-restore < /etc/sysconfig/iptables I get "error at line 2 > failed" > > > # Generated by iptables-save v1.2.11 on Mon Mar 7 22:18:56 2005 > EXT_INTERFACE="eth0" > *filter *filter is not a variable, basically what you are doing is creating a shell script, so variables are declared as they are in a shell script;; var=something Hope that helps. Thanks, Ron DuFresne - -- ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ admin & senior security consultant: sysinfo.com http://sysinfo.com ...Love is the ultimate outlaw. It just won't adhere to rules. The most any of us can do is sign on as it's accomplice. Instead of vowing to honor and obey, maybe we should swear to aid and abet. That would mean that security is out of the question. The words "make" and "stay" become inappropriate. My love for you has no strings attached. I love you for free... -Tom Robins <Still Life With Woodpecker> -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (GNU/Linux) iD8DBQFCLX7gst+vzJSwZikRAhmvAKCjvyPLX1KG1lYA7AiCxpcUlAflxgCfQ9HB loDTSmVLzLdfOiozS+uP9mE= =fuNo -----END PGP SIGNATURE-----
