Parameter Command
iptables [filter | nat]
By default, a set of chains is defined with hidden rules. For NAT, the predefined chains
are: PREROUTING, POSTROUTING, OUTPUT. For filter, the predefined chains are:
INPUT, OUTPUT, FORWARD. For background information, see Firewall/Packet
Filtering on page 25.
Use the set command to configure a rule for a predefined chain after the add
command is used to add a rule for that chain. Or use the set command to configure a
rule after the add command is used to add a new chain and to add a new rule for the
new chain (set iptables) <filter | nat> <Tab> <Tab> shows the current chains; set
iptables <filter | nat> <chainname> shows the rules for a specific chain, and get iptables
<filter | nat> <chainname> <rule_number> shows the configuration parameters to set
filtering policies.
Synopsis: set iptables nat PREROUTING|POSTROUTING|OUTPUT <number> |
filter INPUT| FORWARD|OUTPUT <number> destination <ip> inv <yes|no> source
<i
p>
inv
<y
es|no>
p
r
otocol
<
p
r
o>
inv
<
y
es|no>
dp
or
t
<por
t>
inv
<y
es|no>
spor
t
<por
t>
inv<yes|no> in-interface <in> inv<yes|no> out-interface <out> inv<yes|no> fragment
<head|nonhead|all> target <rule> to-source <ip> to-destination <ip>
Example: set iptables nat PREROUTING 0 destination 127.2.2.2 inv yes source
127.2.2.1 inv yes protocol tcp inv no dport 9000 inv no in-interface eth0 inv no fragment
head
NOTE: The parameters dport and sport are only available if the protocol is tcp or udp.
network hostname
Use the set command to configure the hostname for the MergePoint SP manager.
Synopsis: set network hostname <hostname>
Example: set network hostname MergePoint1
NOTE: By default the hostname is MergePoint.
Chapter 7: Using the CLI Utility 139
To Next Page
Loading...
Need help?
General
