MESSAGE
DATE | 2021-08-20 |
FROM | Ruben Safir
|
SUBJECT | Re: [Hangout - NYLXS] [artix-general] iptables blocking dns queries
|
On Fri, Aug 20, 2021 at 10:41:49AM -0500, Jeff Pohlmeyer wrote: > On Thu, Aug 19, 2021 at 9:43 PM Ruben Safir wrote: > > > > anyone know a solution to this that works > > iptables v1.8.7 (legacy): unknown option "--dport" > > Try changing: > -p udp --dport 53 > To this: > -p udp -m udp --dport 53 > > - Jeff
[www3 namedb]# /sbin/iptables -I INPUT -p udp -m udp –-dport 53 -m string –hex-string '|03|www|08|pizzaseo|03|com|' –algo bm -j DROP iptables v1.8.7 (legacy): Couldn't load match `udp':No such file or directory
Try `iptables -h' or 'iptables --help' for more information.
It seems as if there is something fudementally broken in iptables.
BTW - you can see it defaults to legacy.
I don't understand how they can move to nft if nft isn't close to being finished with no string matching? Doesn't this leave firewalls across the entire internet exposed?
-- So many immigrant groups have swept through our town that Brooklyn, like Atlantis, reaches mythological proportions in the mind of the world - RI Safir 1998 http://www.mrbrklyn.com
DRM is THEFT - We are the STAKEHOLDERS - RI Safir 2002 http://www.nylxs.com - Leadership Development in Free Software http://www2.mrbrklyn.com/resources - Unpublished Archive http://www.coinhangout.com - coins! http://www.brooklyn-living.com
Being so tracked is for FARM ANIMALS and extermination camps, but incompatible with living as a free human being. -RI Safir 2013 _______________________________________________ Hangout mailing list Hangout-at-nylxs.com http://lists.mrbrklyn.com/mailman/listinfo/hangout
|
|