Rob Sterenborg írta:
On Wed, October 4, 2006 10:03, G�sp�r Lajos wrote:
Hi,
fw1:~# iptables -v -A INPUT -j DROP -p tcp -m string --string "test"
DROP tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 STRING match "test"
iptables: Invalid argument
Does it means that it fails at insertation of the rule into the chain,
doesn't?
- You probably don't have the string module installed and/or loaded.
- Kernel 2.6.18 is rather new (sep-2006) and iptables 1.2.11 is rather old
(june 2004). Upgrade to a new iptables version: 1.3.6 is just released.
I have already tried it with the Debian backport of iptables (v1.3.x)
... Same results.
Right now I am recompiling the kernel and iptables + pom-ng.
Hope it helps... :)
Grts,
Rob
