[HLFL] Re: Unknown arg `--reject-with'

Stephane Bortzmeyer bortzmeyer at nic.fr
Fri Apr 7 16:57:45 EDT 2006 

On Fri, Apr 07, 2006 at 04:35:20PM +0200,
 Stephane Bortzmeyer <bortzmeyer at nic.fr> wrote 
 a message of 26 lines which said:

> iptables v1.2.11: Unknown arg `--reject-with'

It seems indeed a bug in hlfl and the attached patch seems to fix it.

-------------- next part --------------
--- src/linux_netfilter.c~	2003-06-17 00:17:59.000000000 +0200
+++ src/linux_netfilter.c	2006-04-07 17:10:05.339040878 +0200
@@ -193,11 +193,11 @@
 		/* Add extra rules specific to tcp protocol, when protocol is all */
 		if (!strcmp(proto, "all")) {
 			fprintf(fout,
-				"$iptables --append ALL --source %s --destination %s --protocol tcp %s %s --jump %sREJECT --reject-with tcp-reset %s\n",
-				src, dst, sports_as_src, dports_as_dst, logit, via_out);
+				"$iptables --append ALL --source %s --destination %s --protocol tcp %s %s --jump %sREJECT %s %s\n",
+				src, dst, sports_as_src, dports_as_dst, logit, rejectit, via_out);
 			fprintf(fout,
-				"$iptables --append ALL --source %s  --destination %s --protocol tcp %s %s --jump %sREJECT --reject-with tcp-reset %s\n",
-				dst, src, dports_as_src, sports_as_dst, logit, via_in);
+				"$iptables --append ALL --source %s  --destination %s --protocol tcp %s %s --jump %sREJECT %s %s\n",
+				dst, src, dports_as_src, sports_as_dst, logit, rejectit, via_in);
 		}
 		fprintf(fout,
 			"$iptables --append ALL --source %s --destination %s --protocol %s %s %s --jump %sREJECT %s %s\n",
@@ -222,8 +222,8 @@
 		/* Add an extra rule specific to tcp protocol, when protocol is all */
 		if (!strcmp(proto, "all")) {
 			fprintf(fout,
-				"$iptables --append ALL --source %s --destination %s --protocol tcp %s %s --jump %sREJECT --reject-with tcp-reset %s\n",
-				src, dst, sports_as_src, dports_as_dst, logit, via_out);
+				"$iptables --append ALL --source %s --destination %s --protocol tcp %s %s --jump %sREJECT %s %s\n",
+				src, dst, sports_as_src, dports_as_dst, logit, rejectit, via_out);
 		}
 		fprintf(fout,
 			"$iptables --append ALL --source %s --destination %s --protocol %s %s %s --jump %sREJECT %s %s\n",

More information about the hlfl mailing list