On Thursday 2011-05-12 17:34, Stephen Johnson wrote: >On Thu, 2011-05-12 at 10:05 -0500, Mahmood Naderan wrote: >> Hi, >> beofore openning a port, I checked which port is open: >> >> Then I opened a port with >> mahmood@client:~$ sudo iptables -A INPUT -p tcp -d 0/0 -s 0/0 --dport 4949 -j ACCEPT Why do you specify redundant arguments like -s 0/0? Secondly, the rule may be appended in a place where it is never reached, rendering it useless. >> However netstat doen't show it is open: And for the record, use modern tools like ss (ss -an; ss -alntp perhaps in this case). PS: Wraths to those who strip the Cc list. -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
