Create iptable rule to match UDP traffic with multiple source ports and a single destination port

john

1/27/24, 1:33 PM

I am trying to create an iptable rule that will match multiple source ports and a single destination port. I have tried the following rule but am met with this error:

iptables -A INPUT -p udp -m multiport --sports 30000:65535 --dport 3074 -j ACCEPT
iptables v1.4.21: multiport: option "--source-ports" cannot be used together with "--destination-ports".

I saw a post similar to this one where someone asked about routing traffic from certain ports and/or IP's to a single port/IP however that is not what I am trying to do. I want only traffic coming from those source ports going to that single destination port to be accepted.

I am using a default drop all policy, if anyone can help that would be greatly appreciated!

125

1 + 0

firewall

iptables

Score:1

Server

setenforce 1

1/27/24, 1:59 PM

Dport is matching as a multiport option here, you should put it before:

iptables -A INPUT -p udp --dport 3074 -m multiport --sports 30000:65535 -j ACCEPT

+ 3

john

1/27/24, 2:06 PM

Thanks worked perfectly!

A.B

1/27/24, 7:53 PM

Indeed. Then `--dport` becomes a parameter to the implicit `-m udp` match (which appears back when using `iptables -S INPUT` or `iptables-save`). This would also have worked: `iptables -A INPUT -p udp -m multiport --sports 30000:65535 -m udp --dport 3074 -j ACCEPT`

john

1/28/24, 7:48 AM

Ah okay I understand now how the kernel would read the rule, thanks for clearing that up for me I really appreciate the help!

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: Create iptable rule to match UDP traffic with multiple source ports and a single destination port

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.