[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

RE: custom firewall configuration

From: "Mike Burger" <mburger bubbanfriends org>
To: "General Red Hat Linux discussion list" <redhat-list redhat com>
Subject: RE: custom firewall configuration
Date: Sat, 31 Dec 2005 14:58:54 -0500 (EST)

On Fri, December 30, 2005 9:16 am, A Fadyushin it-centre ru wrote:
> Usually it is better to edit the /etc/sysconfig/iptables manually rather
> than add rules one by one via iptables command. For example, it is much
> easier to reorder rules via editinf of the file. Of course, you should
> restart the iptables service after each edit. When you are satisfied
> with the results, issue the command 'service iptables save' - the file
> /etc/sysconfig/iptables will be rewritten with the addition of
> statistics information user by 'service iptables restore'.

Actually, I used to do this, too...what I've found, instead, is that it's
better to maintain an iptables script, into/from which you can add/remove
rules.  Then, you can run that script, make sure that the rules are doing
what you want, then run "service iptables save" to save them as the
default, or "service iptables restore" to bring your firewall back to the
state it was previously in.

-- 
Mike Burger
http://www.bubbanfriends.org

Visit the Dog Pound II BBS
telnet://dogpound2.citadel.org or http://dogpound2.citadel.org:2000

To be notified of updates to the web site, visit
http://www.bubbanfriends.org/mailman/listinfo/site-update, or send a
message to:

site-update-request bubbanfriends org

with a message of:

subscribe

References:
- RE: custom firewall configuration
  - From: A.Fadyushin

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]