Rules don't Work

Fri, 5 Oct 2001 08:46:20 -0400

Isamp(isamp@terra.com.br) is reported to have said:
> Hi All,
> 
> 
> Please, why this rules don't accepted by iptables ?
> 
> 
> $IPTABLES -A CHECK_FLAGS -p tcp --tcp-flags ALL FIN,URG,PSH \
> 	-m limit --limit 5/minute -j LOG --log-level $LOG_LEVEL --log-prefix
> "NMAP-XMAS:"
> $IPTABLES -A CHECK_FLAGS -p tcp --tcp-flags ALL FIN,URG,PSH -j DROP
> 
> $IPTABLES -A CHECK_FLAGS -p tcp --tcp-flags SYN,RST SYN,RST \
> 	-m limit --limit 5/minute -j LOG --log-level $LOG_LEVEL --log-prefix
> "SYN/RST:"
> $IPTABLES -A CHECK_FLAGS -p tcp --tcp-flags SYN,RST SYN,RST -j DROP
> 
> $IPTABLES -A CHECK_FLAGS -p tcp --tcp-flags SYN,FIN SYN,FIN \
> 	-m limit --limit 5/minute -j LOG --log-level $LOG_LEVEL --log-prefix
> "SYN/FIN:"
> $IPTABLES -A CHECK_FLAGS -p tcp --tcp-flags SYN,FIN SYN,FIN -j DROP
> 

Do you have a line like below at the beginning of your script?

 $IPTABLES -N CHECK_FLAGS

-- 
<-------- The information went data way --------->
_______________________________________________________