On Wed, Jun 23, 2010 at 04:47:06PM +0300, Lars Nooden wrote: > Am 23.06.2010 um 14:54 schrieb Jan Engelhardt: >> Do not start grepping in iptables -L. > > There is also building iptables rules with a script and re-run > that as an option. Scripts are not recommended because of the possibility of race conditions. iptables-restore(8) changes rulesets atomically. >> That is what iptables -S and iptables-save are much better suited >> for. > > Perhaps the manual pages are out of date then. There appears to be > no mention of the option -S in the manual page for iptables v1.2.10 > or on this web page: > > http://linux.die.net/man/8/iptables > > % iptables -S > iptables v1.2.10: Unknown arg `-S' > Try `iptables -h' or 'iptables --help' for more information. http://www.netfilter.org/news.html : "2004-Jun-15 New iptables 1.2.10 release ..." That was SIX YEARS ago. > Where are you finding -S ? What is out of date is your version of iptables and that Web page. Manuals for recent releases of iptables are up-to-date. -- Offlist mail to this address is discarded unless "/dev/rob0" or "not-spam" is in Subject: header -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
