iptables: rule with RETURN target just after a rule with ACCEPT target

04-25-2007, 08:13 AM

Hi, I've seen in several scripts the following layout:

iptables criteria -j ACCEPT
iptables the_same_criteria_as_above -j RETURN

for example:

iptables -A INPUT -p tcp -m tcp --dport 100 -j ACCEPT
iptables -A INPUT -p tcp -m tcp --dport 100 -j RETURN

The last rule will be never matched, because all tcp incoming
connections will be accepted, and then will go throw the next chain.
So, What is the usefulness of this configuration?

IMHO, I think is for changing the scripts in a fast way (just
commenting on the first line will yield in default policy for the
INPUT chain)

TIA

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
iptables rule	Bonno Bloksma	Linux Networking	6	03-06-2010 10:48 PM
iptables: rule with RETURN target after a rule with the ACCEPT target	Neroku	Linux Networking	0	04-24-2007 08:43 PM
Iptables rule ID	drg	Linux Networking	3	02-22-2006 02:24 AM
iptables rule to block external, but accept local port (8009) connection	OtisUsenet	Linux Networking	1	02-14-2006 08:10 AM
iptables QUEUE target docs?	bill davidsen	Linux Networking	0	10-17-2003 06:11 PM