Discussion:
iptables: how to list tables?
(too old to reply)
timeOday
2003-10-01 05:45:18 UTC
Permalink
-L only lists the chains in a given table. Others besides filter, nat and
mangle can be loaded from modules or, I suppose, compiled in. So how do I
list all the currently loaded/compiled in tables?

(IMHO it's odd that -L doesn't list all the chains on all the tables by
default, or at least provide an option to do so. Or maybe I'm just missing
it?)
Juha Laiho
2003-10-01 17:12:00 UTC
Permalink
Post by timeOday
-L only lists the chains in a given table. Others besides filter, nat and
mangle can be loaded from modules or, I suppose, compiled in. So how do I
list all the currently loaded/compiled in tables?
Hmm.. I find this curious; I've never seen a reference to another table
than one of these three. Do you have an example?
Post by timeOday
(IMHO it's odd that -L doesn't list all the chains on all the tables by
default, or at least provide an option to do so. Or maybe I'm just missing
it?)
At least to me the functionality of the three tables are different enough
that I don't see a need to see them in a single listing. And if I need
that, I can always do "iptables-save" and look at the save file.
--
Wolf a.k.a. Juha Laiho Espoo, Finland
(GC 3.0) GIT d- s+: a C++ ULSH++++$ P++@ L+++ E- W+$@ N++ !K w !O !M V
PS(+) PE Y+ PGP(+) t- 5 !X R !tv b+ !DI D G e+ h---- r+++ y++++
"...cancel my subscription to the resurrection!" (Jim Morrison)
timeOday
2003-10-01 18:00:51 UTC
Permalink
Post by Juha Laiho
Post by timeOday
-L only lists the chains in a given table. Others besides filter, nat and
mangle can be loaded from modules or, I suppose, compiled in. So how do I
list all the currently loaded/compiled in tables?
Hmm.. I find this curious; I've never seen a reference to another table
than one of these three. Do you have an example?
Post by timeOday
(IMHO it's odd that -L doesn't list all the chains on all the tables by
default, or at least provide an option to do so. Or maybe I'm just
missing it?)
At least to me the functionality of the three tables are different enough
that I don't see a need to see them in a single listing. And if I need
that, I can always do "iptables-save" and look at the save file.
iptables-save is great idea.

From reading the documentation I had the idea that tables could be created
willy-nilly by loading modules.. I assmed (incorrectly) that there were a
bunch of different table modules available.

I am really liking iptables over ipchains and ipmasqadm so far! Obviously
I'm behind the curve but I tend to leave this sort of thing alone so long
as it's working.
Kenneth Porter
2003-10-01 22:53:22 UTC
Permalink
Post by timeOday
-L only lists the chains in a given table. Others besides filter, nat
and mangle can be loaded from modules or, I suppose, compiled in. So
how do I list all the currently loaded/compiled in tables?
cat /proc/net/ip_table_names
--
Kenneth Porter
http://www.sewingwitch.com/ken/
timeOday
2003-10-02 12:55:09 UTC
Permalink
Post by Kenneth Porter
Post by timeOday
-L only lists the chains in a given table. Others besides filter, nat
and mangle can be loaded from modules or, I suppose, compiled in. So
how do I list all the currently loaded/compiled in tables?
cat /proc/net/ip_table_names
Excellent, thanks!
Tim Smith
2003-10-03 10:15:09 UTC
Permalink
Post by timeOday
-L only lists the chains in a given table. Others besides filter, nat and
mangle can be loaded from modules or, I suppose, compiled in. So how do I
list all the currently loaded/compiled in tables?
Well, for modules, how about "lsmod | grep iptables"?
--
Evidence Eliminator is worthless. See evidence-eliminator-sucks.com
--Tim Smith
Loading...