iptables : ! not allowed with multiple source

Question

When I run this command :

sudo iptables -I FORWARD '!' -s x.x.x.x,y.y.y.y -d 172.18.0.3 -p tcp --dport 9114 -j DROP

I get the error :

iptables v1.6.1: ! not allowed with multiple source or destination IP addresses

Any ideas what is the correct command for this use case?

score 0 · Accepted Answer · answered Apr 10 '21 at 13:02

0

Negated logic should work here:

sudo iptables -I FORWARD -d 172.18.0.3 -p tcp --dport 9114 -j DROP
sudo iptables -I FORWARD -s x.x.x.x,y.y.y.y -d 172.18.0.3 -p tcp --dport 9114 -j ACCEPT

Commands have to be entered in this order so that the DROP rule appears last in the chain.

answered Apr 10 '21 at 13:02

Tero Kilkanen

36,796
3
41
63

thank you this worked for me – Alireza Azad Apr 10 '21 at 14:16

iptables : ! not allowed with multiple source

1 Answers1