Dear all,
After I got the rules and many things down, now selinux comes in and denies iptables
http://fcp.surfsite.org/modules/newbb/viewtopic.php?topic_id=64110&forum...
https://www.redhat.com/archives/fedora-list/2008-November/msg01208.html
https://www.redhat.com/archives/fedora-list/2008-November/msg01640.html
I see the following:
type=1400 audit(1227217617.326:6): avc: denied { write } for pid=10490 comm="iptables-save" path="/etc/sysconfig/iptables" dev=dm-0 ino=28345626 scontext=unconfined_u:unconfined_r:iptables_t:s0-s0:c0.c1023 tcontext=system_u:object_r:etc_t:s0 tclass=file
Thanks,
Antonio
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Antonio Olivares wrote:
Dear all,
After I got the rules and many things down, now selinux comes in and denies iptables
http://fcp.surfsite.org/modules/newbb/viewtopic.php?topic_id=64110&forum...
https://www.redhat.com/archives/fedora-list/2008-November/msg01208.html
https://www.redhat.com/archives/fedora-list/2008-November/msg01640.html
I see the following:
type=1400 audit(1227217617.326:6): avc: denied { write } for pid=10490 comm="iptables-save" path="/etc/sysconfig/iptables" dev=dm-0 ino=28345626 scontext=unconfined_u:unconfined_r:iptables_t:s0-s0:c0.c1023 tcontext=system_u:object_r:etc_t:s0 tclass=file
Thanks,
Antonio
It works for me. My file is being saved to /etc/sysconfig/iptables.save though? Did you change the config?
selinux@lists.fedoraproject.org
-
Antonio Olivares -
Daniel J Walsh