Comment 4 for bug 1873951
Revision history for this message
| Mark Goddard (mgoddard) wrote Re: ironinc inspector deploy fails due to iptables --flush | #4 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
bbfa235
(Get the code!)
The code exists for users switching from iptables to dnsmasq as the PXE filter. It's not just a one time upgrade transition - it's configurable. So I think it needs to stay.
From the manpage:
-F, --flush [chain]
Flush the selected chain (all the chains in the table if none is given). This is equivalent to deleting all the rules one by one.
So we could fall back to deleting rules one by one. Possibly all at once if we can do some wildcard match:
-D, --delete chain rule-specification
-D, --delete chain rulenum
Delete one or more rules from the selected chain. There are two versions of this command: the rule can be specified as a number in the chain (starting at 1 for the first rule) or a rule to match.