Skip to content

Instantly share code, notes, and snippets.

/output of the go script

Created August 8, 2013 00:55
Show Gist options
  • Save anonymous/6180482 to your computer and use it in GitHub Desktop.
Save anonymous/6180482 to your computer and use it in GitHub Desktop.
Download ZIP
iptables 1.4.15 sets state information that is not displayed by iptables 1.4.16 binaries (iptables and iptables-save)
Raw
output of the go script
#!/bin/sh -v
STATES='NEW,ESTABLISHED,RELATED,INVALID,UNTRACKED'
uname -a
Linux plop 3.10.5-1-ARCH #1 SMP PREEMPT Mon Aug 5 08:04:22 CEST 2013 x86_64 GNU/Linux
ls -l
total 1040
-rwxr-xr-x 1 root root 551 Aug 7 20:41 go
drwxr-xr-x 1 root root 520 Aug 7 19:53 iptables-1.4.15
-rw-r--r-- 1 root root 514830 Jul 31 2012 iptables-1.4.15.tar.bz2
drwxr-xr-x 1 root root 520 Aug 7 19:53 iptables-1.4.16
-rw-r--r-- 1 root root 536827 Oct 7 2012 iptables-1.4.16.tar.bz2
-rw-r--r-- 1 root root 167 Aug 7 20:41 output
rm -rf /usr/local/{lib,bin,sbin}/* >/dev/null 2>&1
iptables --version && iptables-save
./go: line 8: iptables: command not found
make install -C iptables-1.4.15 >/dev/null 2>&1
iptables --version && iptables-save
iptables v1.4.15
# Generated by iptables-save v1.4.15 on Wed Aug 7 20:41:45 2013
*filter
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
COMMIT
# Completed on Wed Aug 7 20:41:45 2013
iptables -A INPUT -m state --state $STATES
iptables -A INPUT -m conntrack --ctstate $STATES
iptables --version && iptables-save
iptables v1.4.15
# Generated by iptables-save v1.4.15 on Wed Aug 7 20:41:45 2013
*filter
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
-A INPUT -m state --state INVALID,NEW,RELATED,ESTABLISHED,UNTRACKED
-A INPUT -m conntrack --ctstate INVALID,NEW,RELATED,ESTABLISHED,UNTRACKED
COMMIT
# Completed on Wed Aug 7 20:41:45 2013
rm -rf /usr/local/{lib,bin,sbin}/* >/dev/null 2>&1
iptables --version && iptables-save
./go: line 15: iptables: command not found
make install -C iptables-1.4.16 >/dev/null 2>&1
iptables --version && iptables-save
iptables v1.4.16
# Generated by iptables-save v1.4.16 on Wed Aug 7 20:41:46 2013
*filter
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
-A INPUT -m state
-A INPUT -m conntrack --ctstate INVALID,NEW,RELATED,ESTABLISHED,UNTRACKED
COMMIT
# Completed on Wed Aug 7 20:41:46 2013
Raw
the actual go script
#!/bin/sh -v
STATES='NEW,ESTABLISHED,RELATED,INVALID,UNTRACKED'
uname -a
ls -l
rm -rf /usr/local/{lib,bin,sbin}/* >/dev/null 2>&1
iptables --version && iptables-save
make install -C iptables-1.4.15 >/dev/null 2>&1
iptables --version && iptables-save
iptables -A INPUT -m state --state $STATES
iptables -A INPUT -m conntrack --ctstate $STATES
iptables --version && iptables-save
rm -rf /usr/local/{lib,bin,sbin}/* >/dev/null 2>&1
iptables --version && iptables-save
make install -C iptables-1.4.16 >/dev/null 2>&1
iptables --version && iptables-save
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment