my iptables setting not loaded after reboot in fc5

Jeff Vian jvian10 at charter.net
Thu May 18 23:16:20 UTC 2006


On Thu, 2006-05-18 at 16:51 -0500, Hongwei Li wrote:
> > Here's what I did to insert a rule (using a minimal install of FC4 to set up a
> > subversion server):-
> >
> > To open port 10000 for WebMin without nice graphical tools the following
> > worked for me:-
> >
> > Add accept port 10000 rule to firewall:-
> >
> > Get a list of the current rules
> > iptables -t filter -L --line-numbers
> >
> > Insert the rule before the last rule
> > iptables -I RH-Firewall-1-INPUT 10 -j ACCEPT -p tcp -m state --state
> > NEW --dport 10000
> > there were 10 rules already in use in this case
> >
> > Configure iptables to save rule set upon restart
> > vim /etc/sysconfig/iptables-config
> > replace "no" with "yes" in line
> > IPTABLES_SAVE_ON_RESTART="no"
> >
> > do
> > service iptables restart
> >
> > put
> > IPTABLES_SAVE_ON_RESTART="no"
> > back to "yes"
> >
> > shutdown -r now
> >
> > and
> > iptables -t filter -L --line-numbers
> > to make sure it worked.
> >
> >
> > Any help to you?
> >
> > Dave Fletcher
> >
> 
> I did similar. But, my problem is that no matter what I do (I tested all
> different ways), as long as I put
> IPTABLES_SAVE_ON_RESTART="yes"
> and reboot, then all of my settings are gone.
> 
YES, UNLESS you have put your changes into the running rules before you
do the restart.  That line will force the running rules to overwrite and
delete any changes you have made to /etc/sysconfig/iptables.

> I also tried Firestarter. Strange thing is that I set some ports open from it,
> and restart computer. Then, the iptables settings are the "original output"
> plus whatever I set in firestarter, but the file /etc/sysconfig/iptables goes
> back to "original" -- no port is opened from that file.  So, the firestarter
> saves its setting somewhere else and adds them on top of the "original
> setting".
> 
> Something strange. I don't understand.
> 
> Hongwei
> 




More information about the fedora-list mailing list