1 :INPUT,FORWARD,OUTPUT 2 -p dccp -m dccp --sport 1;=;OK 3 -p dccp -m dccp --sport 65535;=;OK 4 -p dccp -m dccp --dport 1;=;OK 5 -p dccp -m dccp --dport 65535;=;OK 6 -p dccp -m dccp --sport 1:1023;=;OK 7 -p dccp -m dccp --sport 1024:65535;=;OK 8 -p dccp -m dccp --sport 1024:;-p dccp -m dccp --sport 1024:65535;OK 9 -p dccp -m dccp ! --sport 1;=;OK 10 -p dccp -m dccp ! --sport 65535;=;OK 11 -p dccp -m dccp ! --dport 1;=;OK 12 -p dccp -m dccp ! --dport 65535;=;OK 13 -p dccp -m dccp --sport 1 --dport 65535;=;OK 14 -p dccp -m dccp --sport 65535 --dport 1;=;OK 15 -p dccp -m dccp ! --sport 1 --dport 65535;=;OK 16 -p dccp -m dccp ! --sport 65535 --dport 1;=;OK 17 # ERROR: should fail: iptables -A INPUT -p dccp -m dccp --sport 65536 18 # -p dccp -m dccp --sport 65536;;FAIL 19 -p dccp -m dccp --sport -1;;FAIL 20 -p dccp -m dccp --dport -1;;FAIL 21 -p dccp -m dccp --dccp-types REQUEST,RESPONSE,DATA,ACK,DATAACK,CLOSEREQ,CLOSE,RESET,SYNC,SYNCACK,INVALID;=;OK 22 -p dccp -m dccp ! --dccp-types REQUEST,RESPONSE,DATA,ACK,DATAACK,CLOSEREQ,CLOSE,RESET,SYNC,SYNCACK,INVALID;=;OK 23 # DCCP option 0 is valid, see http://tools.ietf.org/html/rfc4340#page-29 24 # ERROR: cannot load: iptables -A INPUT -p dccp -m dccp --dccp-option 0 25 #-p dccp -m dccp --dccp-option 0;=;OK 26 -p dccp -m dccp --dccp-option 255;=;OK 27 -p dccp -m dccp --dccp-option 256;;FAIL 28 -p dccp -m dccp --dccp-option -1;;FAIL 29 # should we accept this below? 30 -p dccp -m dccp;=;OK 31
