Is iptables able to show current states?
netfilter@island.ca
netfilter@island.ca
Thu, 5 Jul 2001 21:23:36 -0400
I remember that with ipchains you could "ipchains -ML" to list current open connections so that you could tell that things were actually working. This was for Masquarading. Is there something similar in iptables to show you your current states?
I know with iptables you can "iptables -t nat -nvL" and have it show you that you are infact showing some packets hitting your SNAT rule but can you see the individual connections as they are made?
for example:
$ipchains -ML
IP masquerading entries
prot expire source destination ports
TCP 5810:03.30 test.domain.org xxx.xxx.xxx.xxx 1952 (62603) -> https
TCP 00:40.57 test.domain.org 192.168.0.2 1039 (64133) -> 1045
TCP 5814:46.14 test.domain.org xxx.xxx.xxx.xxx 1970 (62634) -> https
-aj mirani