Scroll to navigation

IPTABLES-SAVE(8) iptables 1.8.10 IPTABLES-SAVE(8)

NAME

iptables-save — dump iptables rules

ip6tables-save — dump iptables rules

SYNOPSIS

iptables-save [-M modprobe] [-c] [-t table] [-f filename]

ip6tables-save [-M modprobe] [-c] [-t table] [-f filename]

DESCRIPTION

These tools are deprecated in Red Hat Enterprise Linux. They are maintenance only and will not receive new features. New setups should use nft(8). Existing setups should migrate to nft(8) when possible. See https://red.ht/nft_your_tables for details.

iptables-save and ip6tables-save are used to dump the contents of IP or IPv6 Table in easily parseable format either to STDOUT or to a specified file.

Specify the path to the modprobe(8) program. By default, iptables-save will inspect /proc/sys/kernel/modprobe to determine the executable's path.
Specify a filename to log the output to. If not specified, iptables-save will log to STDOUT.
Include the current values of all packet and byte counters in the output.
Restrict output to only one table. If the kernel is configured with automatic module loading, an attempt will be made to load the appropriate module for that table if it is not already there.
If not specified, output includes all available tables. No module loading takes place, so in order to include a specific table in the output, the respective module (something like iptable_mangle or ip6table_raw) must be loaded first.

BUGS

None known as of iptables-1.2.1 release

AUTHORS

Harald Welte <laforge@gnumonks.org>
Rusty Russell <rusty@rustcorp.com.au>
Andras Kis-Szabo <kisza@sch.bme.hu> contributed ip6tables-save.

SEE ALSO

iptables-apply(8), iptables-restore(8), iptables(8), nft(8)

The iptables-HOWTO, which details more iptables usage, the NAT-HOWTO, which details NAT, and the netfilter-hacking-HOWTO which details the internals.

iptables 1.8.10