diff options
| author | Florian Westphal <fw@strlen.de> | 2025-08-25 11:07:35 +0200 |
|---|---|---|
| committer | Florian Westphal <fw@strlen.de> | 2025-08-25 17:09:41 +0200 |
| commit | c3d5053db05f99bd72219aebeefc7fb0195ac041 (patch) | |
| tree | 2a9789514c1382fad5b8bf1270c08a2190d263fa | |
| parent | 102e9607c63266c7f3413f8dcae51d9476e396e4 (diff) | |
There is no way we can change this after two decades.
Add an example and document that declaring a user defined chain
will flush its contents in --noflush mode.
Closes: https://bugzilla.netfilter.org/show_bug.cgi?id=1242
Signed-off-by: Florian Westphal <fw@strlen.de>
Acked-by: Pablo Neira Ayuso <pablo@netfilter.org>
| -rw-r--r-- | iptables/iptables-restore.8.in | 14 |
1 files changed, 14 insertions, 0 deletions
diff --git a/iptables/iptables-restore.8.in b/iptables/iptables-restore.8.in index df61b2a6..abf8d6de 100644 --- a/iptables/iptables-restore.8.in +++ b/iptables/iptables-restore.8.in @@ -48,6 +48,20 @@ Print a short option summary. \fB\-n\fR, \fB\-\-noflush\fR Don't flush the previous contents of the table. If not specified, both commands flush (delete) all previous contents of the respective table. +Note that this option will flush user-defined chains if they are declared. +Example: +.P +.in +4n +.EX +*filter +:FILTERS - [0:0] +-A FILTERS ... +.EE + +will flush and re-build the FILTERS chain from scratch, +while retaining the content of all other chains in the table. +.in +.P .TP \fB\-t\fP, \fB\-\-test\fP Only parse and construct the ruleset, but do not commit it. |