Hello all !
I'm trying to use fwsnort on CentOS 5.0. My kernel is 2.6.18-8 and iptables v. 1.3.5. It created several rules with fwsnort for Netfilter but fast all of them have several match string options, such as :
iptables -A INPUT -d 192.168.52.10 -m string --string "GET" --algo bm -m string --string "passwd" -algo bm -j DROP
but all these commands fail to execute with the following error:
iptables v1.3.5: Unknown arg passwd'
when I manually run this command only with the first match condition:
iptables -A INPUT -d 192.168.52.10 -m string --string "GET" --algo bm -j DROP
it works, but not for two or more match string conditions. I don't know what to do. I man page of iptables a see that I can specify several match strings. Why it's not working for me ?
Regards, Alex
I'm trying to use fwsnort on CentOS 5.0. My kernel is 2.6.18-8 and iptables v. 1.3.5. It created several rules with fwsnort for Netfilter but fast all of them have several match string options, such as :
iptables -A INPUT -d 192.168.52.10 -m string --string "GET" --algo bm -m string --string "passwd" -algo bm -j DROP
but all these commands fail to execute with the following error:
iptables v1.3.5: Unknown arg passwd'
when I manually run this command only with the first match condition:
iptables -A INPUT -d 192.168.52.10 -m string --string "GET" --algo bm -j DROP
it works, but not for two or more match string conditions. I don't know what to do. I man page of iptables a see that I can specify several match strings. Why it's not working for me ?
Regards, Alex