>>It refers to line 17 of /etc/sysconfig/iptables which is a config file >>created by iptables-save. my /etc/sysconfig/iptables config as written by lokkit.. What's wrong with line 17? 1 # Firewall configuration written by lokkit 2 # Manual customization of this file is not recommended. 3 # Note: ifup-post will punch the current nameservers through the 4 # firewall; such entries will *not* be listed here. 5 *filter 6 :INPUT ACCEPT [0:0] 7 :FORWARD ACCEPT [0:0] 8 :OUTPUT ACCEPT [0:0] 9 :RH-Lokkit-0-50-INPUT - [0:0] 10 -A INPUT -j RH-Lokkit-0-50-INPUT 11 -A FORWARD -j RH-Lokkit-0-50-INPUT 12 -A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 80 --syn -j ACCEPT 13 -A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 22 --syn -j ACCEPT 14 -A RH-Lokkit-0-50-INPUT -i lo -j ACCEPT 15 -A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 0:1023 --syn -j REJECT 16 -A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 2049 --syn -j REJECT 17 -A RH-Lokkit-0-50-INPUT -p udp -m udp --dport 0:1023 -j REJECT 18 -A RH-Lokkit-0-50-INPUT -p udp -m udp --dport 2049 -j REJECT 19 -A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 6000:6009 --syn -j REJECT 20 -A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 7100 --syn -j REJECT 21 COMMIT Cheers, Mun Heng, Ow H/M Engineering Western Digital M'sia DID : 03-7870 5168 -- Shrike-list mailing list Shrike-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/shrike-list
