Trying to add access to a normal user to append to iptables (it's for intrusion detection, since this machine is too small to run snort or fail2ban).

I'm having trouble getting a user to launch a command without being prompted for their password interactively.

Here's /etc/sudoers :
Code:
Defaults    requiretty
Defaults    env_reset
root	ALL=(ALL) 	ALL
Cmnd_Alias BLACKLIST_ADD = /usr/sbin/iptables -A BLACKLIST -s [0-9.]* -j REFUSE
moses ALL = NOPASSWD: BLACKLIST_ADD
In another terminal on the same host, as user 'moses' I attempt the command, and I'm prompted for a password:
Code:
[moses@nepeta ~]$ sudo /usr/sbin/iptables -A BLACKLIST -s 210.216.230.203 -j REFUSE
[sudo] password for moses:
What am I doing wrong here?