1:INPUT,FORWARD,OUTPUT 2-p dccp -m dccp --sport 1;=;OK 3-p dccp -m dccp --sport 65535;=;OK 4-p dccp -m dccp --dport 1;=;OK 5-p dccp -m dccp --dport 65535;=;OK 6-p dccp -m dccp --sport 1:1023;=;OK 7-p dccp -m dccp --sport 1024:65535;=;OK 8-p dccp -m dccp --sport 1024:;-p dccp -m dccp --sport 1024:65535;OK 9-p dccp -m dccp --sport :;-p dccp -m dccp --sport 0:65535;OK 10-p dccp -m dccp --sport :4;-p dccp -m dccp --sport 0:4;OK 11-p dccp -m dccp --sport 4:;-p dccp -m dccp --sport 4:65535;OK 12-p dccp -m dccp --sport 4:4;-p dccp -m dccp --sport 4;OK 13-p dccp -m dccp --sport 4:3;;FAIL 14-p dccp -m dccp --dport :;-p dccp -m dccp --dport 0:65535;OK 15-p dccp -m dccp --dport :4;-p dccp -m dccp --dport 0:4;OK 16-p dccp -m dccp --dport 4:;-p dccp -m dccp --dport 4:65535;OK 17-p dccp -m dccp --dport 4:4;-p dccp -m dccp --dport 4;OK 18-p dccp -m dccp --dport 4:3;;FAIL 19-p dccp -m dccp ! --sport 1;=;OK 20-p dccp -m dccp ! --sport 65535;=;OK 21-p dccp -m dccp ! --dport 1;=;OK 22-p dccp -m dccp ! --dport 65535;=;OK 23-p dccp -m dccp --sport 1 --dport 65535;=;OK 24-p dccp -m dccp --sport 65535 --dport 1;=;OK 25-p dccp -m dccp ! --sport 1 --dport 65535;=;OK 26-p dccp -m dccp ! --sport 65535 --dport 1;=;OK 27# ERROR: should fail: iptables -A INPUT -p dccp -m dccp --sport 65536 28# -p dccp -m dccp --sport 65536;;FAIL 29-p dccp -m dccp --sport -1;;FAIL 30-p dccp -m dccp --dport -1;;FAIL 31-p dccp -m dccp --dccp-types REQUEST,RESPONSE,DATA,ACK,DATAACK,CLOSEREQ,CLOSE,RESET,SYNC,SYNCACK,INVALID;=;OK 32-p dccp -m dccp ! --dccp-types REQUEST,RESPONSE,DATA,ACK,DATAACK,CLOSEREQ,CLOSE,RESET,SYNC,SYNCACK,INVALID;=;OK 33# DCCP option 0 is valid, see http://tools.ietf.org/html/rfc4340#page-29 34# ERROR: cannot load: iptables -A INPUT -p dccp -m dccp --dccp-option 0 35#-p dccp -m dccp --dccp-option 0;=;OK 36-p dccp -m dccp --dccp-option 255;=;OK 37-p dccp -m dccp --dccp-option 256;;FAIL 38-p dccp -m dccp --dccp-option -1;;FAIL 39# should we accept this below? 40-p dccp -m dccp;=;OK 41