Thank you, thank you, thank you! Confusing thing was, it worked at the
SL6 iptables, but not at SL 7. Totally overlooked this and spent 5hrs
since morning on it, oh mdg ..-)
All right, all right, at least, it's friday ... :-)
l...@afd.cz | +420 731 13 40 40
AUFEER DESIGN, s.r.o. | www.aufeerdesign.cz
On 03/02/2018 12:59 PM, Stephan Wiesand wrote:
On 2. Mar 2018, at 12:04, Karel Lang AFD <l...@afd.cz> wrote:
stumbled on weird thing today - wanted to setup some iptables rules based on
'mac address' and iptables failed to start.
Scientific Linux release 7.4 (Nitrogen)
yum list all | grep iptables
iptables.x86_64 1.4.21-18.2.el7_4 @sl-fastbugs
iptables-services.x86_64 1.4.21-18.2.el7_4 @sl-fastbugs
iptables-utils.x86_64 1.4.21-18.2.el7_4 @sl-fastbugs
after adding simple rule to '/etc/sysconfig/iptables':
-A INPUT -m mac --mac-source 52-54-00-6f-04-51 -j ACCEPT
it refuses to start after 'systemctl restart iptables' and the 'journalctl -xe'
Error occurred at line: XX and thats' it
If i add the same simple rule to the SL 6.9 iptables rules, it works without
Anyone stumled upon this, only thing i can think of is, that it is not compiled
in standard kernel ..
Thanks for any input - i tried to lookup things at search engines, but so far
no light ..ehh.
Try reading the manual page ;-)
"Match source MAC address. It must be of the form XX:XX:XX:XX:XX:XX"