[CentOS] iptables failure at the last line

Tue Oct 5 11:53:41 UTC 2010
Eero Volotinen <eero.volotinen at iki.fi>

2010/10/5 Alexander Farber <alexander.farber at gmail.com>:
> Hello Nicolas,
> On Tue, Oct 5, 2010 at 11:01 AM, Nicolas Thierry-Mieg
> <Nicolas.Thierry-Mieg at imag.fr> wrote:
>>> Any hints on how to debug those issues?
>> the same way you debug stuff when you can't see the problem by just
>> staring at it: reduce it to a minimal error-case. So, remove some of
>> those /etc/sysconfig/iptables lines until it no longer fails, and
>> identify the exact line that causes the failure. Then stare at that one
>> line and understand why it's failing.
> Ain't those 20! combinations? (my combinatorics skills are aged).
> I was actually hoping for good iptables tips and not for mental coaching :-)

multiport helps to reduce lines on iptables ..