slimserver and firewall
Jeff Vian
jvian10 at charter.net
Tue Feb 7 13:40:12 UTC 2006
On Mon, 2006-02-06 at 23:08 -0500, Christopher K. Johnson wrote:
> Gerhard Magnus wrote:
>
> >root at PuteA Mon Feb 06 16:11:48
> >[268] /home/magnusg $ iptables -I INPUT -s 192.168.1.0/24 -p udp --dport
> >9000 -j ACCEPT
> >
> >Entering "iptables-save" before rebooting doesn't work; "iptables-save
> >-c" as it says in the "Red Hat Linux Bible" doesn't work either. What's
> >the right command here, in FC4?
"service iptables save"
This does work to save the tables to /etc/sysconfig/iptables for me.
> >
> >Thanks again for the help.
> >Jerry
> >
> >
> >
> You have choices. First of all iptables-save does work, but it writes
> by default to stdout, not to /etc/sysconfig/iptables which is the rule
> file loaded by the iptables service upon startup. So you could redirect
> output from the command to that file:
> 'iptables-save >/etc/sysconfig/iptables'
>
> Second you could tell the iptables service script to save it for you:
> 'service iptables save'
>
> Or third, you could edit /etc/sysconfig/iptables yourself to insert the
> lines
> # Permit access to slimserver
> -A RH-Firewall-1-INPUT -s 192.168.1.0/24 -p udp --dport 9000 -j ACCEPT
>
> right below the line:
> -A RH-Firewall-1-INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
>
> The latter method will preserve comments in that file, while the first
> two methods will destroy them.
>
> Chris
>
> --
> "Spend less! Do more! Go Open Source..." -- Dirigo.net
> Chris Johnson, RHCE #804005699817957
>
More information about the users
mailing list