On Mon, Apr 23, 2001 at 01:11:14PM +0200, Lars Hallberg wrote: > I ben reading Linux 2.4 Packet Filtering HOWTO and the iptables > manpage. In the howto and elsewhere the -m option is used, but I can't > find what it means. Not in the howto, nether in the manpage. > > Is it just me or is it missing? > > If it?s missing, do someone know what it means?
It means match extension, and is used to load shared libraries. For example: iptables -A INPUT --state ESTABLISHED,RELATED -j ACCEPT This is in the state library, so you'll get a no chain/target/match error. But: iptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT is OK, as it loads the state library beforehand. Hope that helps :) d -- Daniel Stone Linux Kernel Developer [EMAIL PROTECTED] -----BEGIN GEEK CODE BLOCK----- Version: 3.1 G!>CS d s++:- a---- C++ ULS++++$>B P---- L+++>++++ E+(joe)>+++ W++ N->++ !o K? w++(--) O---- M- V-- PS+++ PE- Y PGP>++ t--- 5-- X- R- tv-(!) b+++ DI+++ D+ G e->++ h!(+) r+(%) y? UF++ ------END GEEK CODE BLOCK------
