Well, that explains why I couldn't search for it! HA! Thanks mucho. Bob McDowell Network/Security Engineer Cox HealthPlans -----Original Message----- From: John Lister [mailto:john.lister@xxxxxxxxxxxxx] Sent: Monday, June 06, 2011 2:58 PM To: Bob McDowell Cc: netfilter@xxxxxxxxxxxxxxx Subject: Re: [2:656]? On 06/06/2011 20:35, bmcdowell@xxxxxxxxxxxxxxxxxx wrote: > Hello list. I'm in the process of 'modernizing' my iptables scripts to utilize iptables-save/iptables-restore. I've imported my script onto a test box, have exported via -save, and now I have a question or two about what I'm seeing. > > For starters, is there a reference for the changes in format? Google is most unhelpful when trying to search for "[2:656]", for example. > > Specifically, I'd like to know what the "2:656" means in the following line: > > ----- > *filter > :INPUT DROP [2:656] > ----- These are the packet/byte counts for that chain from memory - You can simply replace them 0:0 if you are generating scripts and don't care about the counts. John -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
