https://www.cyberciti.biz/faq/how-to-add-comments-to-iptables-rules-on-linux/
ÆÄÀÏ·Î iptables ruleÀ» °ü¸®ÇÏ´Ùº¸¸é »ç¿ë¿ëµµ ¹× ¸ñÀû¿¡ µû¶ó ÁÖ¼®ÀÌ ÇÊ¿äÇÒ °æ¿ì°¡ Àִµ¥ commnet ¸ðµâÀ» È°¿ëÇÏ¸é °ü¸®Çϱ⠿ëÀÌÇÏ´Ù.
¹°·Ð ´ëºÎºÐÀÇ °æ¿ì iptable ruleÀ» ÆÄÀÏÇüÅ·Π¿î¿µÇÏ´õ¶óµµ ÆÄÀϳ» "#" ÁÖ¼®Ã³¸®Çؼ °ü¸®ÇÏ°Ô µÇ´Âµ¥ ÀÌ·²°æ¿ì iptables-save ½Ã ÆÄÀÏÀ» µ¤¾î¾º¿ö¹ö¸®±â¿¡ Ãßõµå¸®´Â ¹æ¹ýÀº ¾Æ´Ï´Ù.
comment ¸ðµâÀ» È°¿ëÇÏ¿© ÁÖ¼®À¸·Î ±ÔÄ¢°ü¸®
iptables ±ÔÄ¢ ÁÖ¼®°ü¸® ¸ðµâ comment
# iptables -I INPUT -m comment --comment "ALL INPUT TRAFFIC"
# iptables -vnL
pkts bytes target prot opt in out source destination
4 184 all -- * * 0.0.0.0/0 0.0.0.0/0 /* ALL INPUT TRAFFIC */
...............................
man iptables-extensions
comment
Allows you to add comments (up to 256 characters) to any rule.
--comment comment
Example:
iptables -A INPUT -i eth1 -m comment --comment "my local LAN"
ÇöÀç ¿î¿µÁßÀÎ ±ÔÄ¢¿¡ ÁÖ¼®À» Ãß°¡ÇÏ´Â ¹æ¹ý
-R replace È°¿ë
iptables -R <chain> <rulenum> <rule-specification>
-R, --replace chain rulenum rule-specification
Replace a rule in the selected chain.
If the source and/or destination names resolve to multiple addresses, the command will fail.
Rules are numbered starting at 1.
Âü°í URl