iptables -C equivalent or another way to test rules
I'm trying to test whether a particular range of IP addresses is being blocked at the firewall. The server is using APF.
Looking online, several forums suggested using the iptables -C command to test whether packets from a particular IP address is being blocked. e.g.
Now when I run this command I am told that the -C switch does not exist. From what I can gather this is a deprecated function of iptables.
iptables -C forward -p tcp -s 172.16.1.0 1025 -d 220.127.116.11 80 -i eth0 accepted
So my question is:
Is there a iptables -C equivalent (either for iptables or APF) where I can test my rules?
In particular I would like to test a specific set of IP addresses to see if they are being blocked.
Thanks in advance.