QUESTION IPTables is having an issue

[thefuzz4]

So I'm not sure what is wrong with my iptables but it started having an issue today with starting. I haven't made any adjustments to it that I can recall.

Here is whats happening

root@pbx:/etc/fail2ban $ service iptables start
iptables: Applying firewall rules: Bad argument `21'
Error occurred at line: 21
Try `iptables-restore -h' or 'iptables-restore --help' for more information.
                                                           [FAILED]

So I opened the file to see what it says

-A INPUT -p tcp -m tcp -s --dport 21 -j ACCEPT

Looking at examples online and I can't find anything out of the ordinary. I even thought maybe there is a problem with a line above it so here is whats above it.

:FORWARD ACCEPT [0:0]
:INPUT DROP [0:0]
:OUTPUT ACCEPT [0:0]
-A INPUT -i lo -j ACCEPT
-A INPUT -p tcp -m tcp --tcp-flags ACK ACK -j ACCEPT
-A INPUT -m state --state ESTABLISHED -j ACCEPT
-A INPUT -m state --state RELATED -j ACCEPT
-A INPUT -p udp -m udp --dport 1024:65535 --sport 53 -j ACCEPT
-A INPUT -p icmp -m icmp --icmp-type 0 -j ACCEPT
-A INPUT -p icmp -m icmp --icmp-type 3 -j ACCEPT
-A INPUT -p icmp -m icmp --icmp-type 4 -j ACCEPT
-A INPUT -p icmp -m icmp --icmp-type 11 -j ACCEPT
-A INPUT -p icmp -m icmp --icmp-type 12 -j ACCEPT
# ***-A INPUT -p tcp -m tcp -s  --dport 22 -j ACCEPT
-A INPUT -p tcp -m tcp --dport 113 -j ACCEPT
# ***-A INPUT -p tcp -m tcp -s  --dport 80 -j ACCEPT
-A INPUT -p tcp -m tcp --dport 83 -j ACCEPT
# ***-A INPUT -p tcp -m tcp -s  --dport 443 -j ACCEPT

If there are any IPTables experts in here if you could perhaps tell me whats going on that would be appreciated.
Here are system specs

 PIAF Installed Version   = 2.0.6.3 under *VMWARE*                  │  
                            │  FreePBX Version          = 2.11.0.11                               │  
                            │  Running Asterisk Version = 11.3.0                                  │  
                            │  Asterisk Source Version  = 11.3.0                                  │  
                            │  Dahdi Source Version     = 2.6.1+2.6.1                             │  
                            │  Libpri Source Version    = 1.4.12                                  │  
                            │  IP Address               = 192.168.1.153 on eth0                   │  
                            │  Operating System         = CentOS release 6.4 (Final)              │  
                            │  Kernel Version           = 2.6.32-279.19.1.el6.i686 - 32 Bit       │  
                            │  Incredible Version       = 11.2

 

[Hyksos]

-A INPUT -p tcp -m tcp -s --dport 21 -j ACCEPT
-s require an argument you're not supplying.

Just like the other lines that are commented out.

Broken travelling man config I guess, don't know.

 

[wardmundy]

Looks like you forgot to enter your default IP address when configuring Travelin Man 3.

Try rerunning: /root/secure-iptables

 

[thefuzz4]

the funny thing is I never setup travelin man. I removed the -s from the entries and got it to fire back up. Thank you.