You can do a man iptables to find all kinds of other info, and searching google helps too. Best thing of all to do is just fire up a packet sniffer and watch...
8)
IPTABLES -A INPUT -p tcp --sport 443 -j ACCEPT
you probably actually want destination port if it is on a server. Clients connect from a high number random port to the server on 443 (https). The dport matches the destination of the packet...
hence..
IPTABLES -A INPUT -p tcp --dport 443 -j ACCEPT
would be right for a server, whereas a client would simply need
IPTABLES -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
Thx , now it works
But... Why :?:
you probably actually want destination port if it is on a server. Clients connect from a high number random port to the server on 443 (https). The dport matches the destination of the packet...
hence..
IPTABLES -A INPUT -p tcp --dport 443 -j ACCEPT
would be right for a server, whereas a client would simply need
IPTABLES -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
Why?
In others distro it works perfectly ...
]]>