The 'hanging' is likely a result of a DNS lookup failing. If you add -n to your iptables command, it will not attempt to resolve DNS names, and may get you around at least that little part. Ross A. Del Duca, GCIH > -----Original Message----- > From: netfilter-bounces@xxxxxxxxxxxxxxxxxxx [mailto:netfilter- > bounces@xxxxxxxxxxxxxxxxxxx] On Behalf Of Matt Singerman > Sent: Wednesday, August 23, 2006 8:49 AM > To: netfilter@xxxxxxxxxxxxxxxxxxx > Subject: Problems configuring iptables > > < SNIP > > Also, if I try to add a rule to allow, say, SSH traffic to a specific > machine behind the firewall, I run into other problems. If I type: > > iptables -A FORWARD -s 0/0 -d w.x.y.z -p tcp --dport 22 --syn -j ACCEPT > > This is, so far as I am aware, the format I would use. However, when I > type iptables -L, the list just hangs just before listing that rule. > > Can anyone offer any pointers as to what I may be doing wrong, and what > I can do to get this working? Thanks! > > Regards, > > Matt
