O’Reilly Books Latest LAMP Titles: mod_perl Pocket Reference (Web site hosting)
O’Reilly Books Latest LAMP Titles: mod_perl Pocket Reference SQL in a Nutshell Network Printing Books by topic: Linux Open Source Security System and Network Administration Unix Web and Internet O’Reilly Network Technologies: ONJava.com ONLamp.com openp2p.com Perl.com XML.com Apache BSD Java Javascript and CSS Linux Mac Mozilla .NET P2P Perl Policy PHP Python Web Services Wireless -D chain rules, –delete chain rules Delete rules from chain. Rules can be specified by their ordinal number in the chain as well as by a general rule description. -R chain number rule, –replace chain number rule Replace a rule in chain. The rule to be replaced is specified by its ordinal number. -C chain rule, –check chain rules Construct a network packet that matches the given rule and check how chain will handle it. The rule must describe the source, destination, protocol, and interface of the packet to be constructed. -L [chain], –list $PARAMETER List the rules in chain. If no chain is specified, list the rules in all chains. -ML, –masquerading –list List masquerading connections. -MS tcp tcpfin udp, –masquerading –set tcp tcpfin udp Set timeout value in seconds for masquerading connections. -MS always takes three parameters specifying the timeout values for TCP sessions, TCP sessions that have received a FIN packet, and UDP packets. -F chain, –flush chain Remove all rules from chain. -Z [chain], –zero [chain] Reset the packet and byte counters in chain. If no chain is specified, all chains will be reset. When used without specifying a chain and combined with the -L command, it lists the current counter values before they are reset. -N chain, –new-chain chain Create a new chain. The chain’s name must be unique. -X [chain], –delete-chain chain Delete chain. Only user-defined chains can be deleted, and there can be no references to the chain to be deleted. If no argument is given, all userdefined chains will be deleted. -P chain target, –policy chain target Set the policy for a built-in chain; the target itself cannot be a chain. -h [icmp] Print a brief help message. If the option icmp is given, print a list of valid ICMP types.