- 论坛徽章:
- 0
|
刚接触iptables,有些地方实在不明白,iptables中的:INPUT ACCEPT [10:1493],[10:1493]是什么意思?
/etc/sysconfig/iptables,最初如下:
Firewall configuration written by system-config-firewall
# Manual customization of this file is not recommended.
*filter
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
-A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
-A INPUT -p icmp -j ACCEPT
-A INPUT -i lo -j ACCEPT
-A INPUT -m state --state NEW -m tcp -p tcp --dport 22 -j ACCEPT
-A INPUT -j REJECT --reject-with icmp-host-prohibited
-A FORWARD -j REJECT --reject-with icmp-host-prohibited
COMMIT
后来我使用iptables -F 删除所有规则后:
# Generated by iptables-save v1.4.7 on Mon Jan 6 10:08:08 2014
*filter
:INPUT ACCEPT [10:1493]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [10:1568]
COMMIT
# Completed on Mon Jan 6 10:08:08 2014
现在我发现:INPUT ACCEPT 由:INPUT ACCEPT [0:0],变为:INPUT ACCEPT [10:1493],
中括号中的 [0:0],[10:1493]是什么意思?
先谢谢了!
|
|
免费注册
发表于 2014-01-06 10:47
发表于 2014-01-06 12:39
