SYSTEM INFORMATION | |
---|---|
OS type and version | Rocky Linux 9 |
Webmin version | 2.202 |
Existing rules:
:INPUT ACCEPT [0:0]
-A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
-A INPUT -p ipv6-icmp -j ACCEPT
-A INPUT -i lo -j ACCEPT
-A INPUT -p tcp -m tcp -m conntrack --dport 22 --state NEW --ctstate NEW -j ACCEPT
-A INPUT -p udp -m udp -m state -d fe80::/64 --dport 546 --state NEW -j ACCEPT
-A INPUT -j REJECT --reject-with icmp6-adm-prohibited
-A FORWARD -j REJECT --reject-with icmp6-adm-prohibited
COMMIT
Editing this rule:
[Accept] If protocol is TCP and destination port is 22 and state of connection is NEW
to change from Accept to Drop, results in this error message:
WARNING! Your current IPtables configuration is invalid : ip6tables-restore v1.8.10 (nf_tables): unknown option “–state” Error occurred at line: 11
Doesn’t seem to be any option called “State” in the Webmin interface.
How to fix?
Thanks.