Ryan Belcher wrote: > iptables -t nat -A PREROUTING -i eth2 -p tcp --dport 10000:11000 -j REJECT --reject-with icmp-host-unreachable > > The above command returns with "Invalid Argument". > > If I simply replace "-j REJECT --reject-with icmp-host-unreachabel" with "-j DROP" iptables accepts it. Did this come with a distribution or have you compiled it on your own? I think I had a similar problem with the iptables that came with Fedora Core because it didn't come with the REJECT module. -- Nathaniel Hall, GSEC GCFW GCIA GCIH
