3 - The REJECT target has an '--reject-with admin-prohib' option which used
4 with kernels that do not support it, will result in a plain DROP instead
5 of REJECT. Use with caution.
6 Kernels that do support it:
7 2.4 - since 2.4.22-pre9
10 - There are some issues related to upgrading from 1.2.x to 1.3.x on a system
11 with dynamic ruleset changes during runtime. (Please see
12 https://bugzilla.netfilter.org/bugzilla/show_bug.cgi?id=334).
13 After upgrading from 1.2 to 1.3, it suggest go do an iptables-save, then
14 iptables-restore to ensure your dynamic rule changes continue to work.