selinux is denying iptables, how can I get the dhcp server working

Daniel J Walsh dwalsh at redhat.com
Fri Nov 21 13:15:19 UTC 2008


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Antonio Olivares wrote:
> Dear all,
> 
> After I got the rules and many things down, now selinux comes in and denies iptables 
> 
> http://fcp.surfsite.org/modules/newbb/viewtopic.php?topic_id=64110&forum=12
> 
> https://www.redhat.com/archives/fedora-list/2008-November/msg01208.html
> 
> https://www.redhat.com/archives/fedora-list/2008-November/msg01640.html
> 
> I see the following:  
> 
> type=1400 audit(1227217617.326:6): avc:  denied  { write } for  pid=10490 comm="iptables-save" path="/etc/sysconfig/iptables" dev=dm-0 ino=28345626 scontext=unconfined_u:unconfined_r:iptables_t:s0-s0:c0.c1023 tcontext=system_u:object_r:etc_t:s0 tclass=file
> 
> 
> Thanks,
> 
> Antonio 
> 
> 
>       
> 
It works for me.  My file is being saved to /etc/sysconfig/iptables.save
though?  Did you change the config?
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org

iEYEARECAAYFAkkmtGcACgkQrlYvE4MpobNFCACbB/mYpP33brGDwFs7utmR6P6H
ZFcAoKtyO3lgz295dANLaHl7j/XUkBIg
=PlPa
-----END PGP SIGNATURE-----




More information about the selinux mailing list