Hello everybody :) I have a doubt and I hope you can help me to make it clear. I wonder what the numbers between the brackets in /etc/sysconfig/iptables stand for, in example: # Generated by iptables-save v1.2.6a on Tue Feb 25 10:04:19 2003 *nat :PREROUTING ACCEPT [6892235:738030875] :POSTROUTING ACCEPT [138782:15823395] :OUTPUT ACCEPT [798478:57582278] [3192:155808] -A PREROUTING -s 192.168.0.0/255.255.0.0 -d ! 200.33.79.0/255.255.255.0 -p tcp -m tcp --dport 80 -j DNAT --to-destination w.x.y.237:3128 [41:2080] -A PREROUTING -d w.x.y.230 -p tcp -m tcp --dport 80 -j DNAT --to-destination 192.168.105.220:80 [113:5412] -A PREROUTING -d w.x.y.230 -p tcp -m tcp --dport 443 -j DNAT --to-destination 192.168.105.220:443 [0:0] -A PREROUTING -d w.x.y.230 -p tcp -m tcp --dport 3389 -j DNAT --to-destination 192.168.0.10:3389 [ ... ] *filter :INPUT ACCEPT [49677716:12655056270] :FORWARD ACCEPT [7553652:3795256749] :OUTPUT ACCEPT [78138171:64007529202] :RH-Lokkit-0-50-INPUT - [0:0] [66319946:14716481982] -A INPUT -j RH-Lokkit-0-50-INPUT [0:0] -A RH-Lokkit-0-50-INPUT -s w.x.y.0/255.255.255.0 -d w.x.y.153 -j ACCEPT [0:0] -A RH-Lokkit-0-50-INPUT -d w.x.y.251 -p tcp -m tcp --dport 80 -j ACCEPT [0:0] -A RH-Lokkit-0-50-INPUT -d w.x.y.251 -p tcp -m tcp --dport 443 -j ACCEPT [...] Most of these rules start with [0:0] and when I have to add a rule manually I add it with [0:0] but I am not sure if that is the right thing to do. Can you help me with that or please point me where to read to find it out? Thanks! Alex. -- ¡Sé libre, usa software libre! Be free, use free software! http://www.imoqland.com/
