iptables has amnesia :-)

[Mikkel L. Ellertson]

Don Russell wrote:
> Mikkel L. Ellertson wrote:
>> If you are talking about the rules not surviving a reboot, try
>> running "service iptables save" and/or "service ip6tables save". If
>> you want the changes saved automatically, edit
>> /etc/sysconfig/iptables.conf and change
>> IPTABLES_SAVE_ON_RESTART="no" to  IPTABLES_SAVE_ON_STOP="yes". Do
>> the same for /etc/sysconfig/ip6tables.conf.
>>
>> Mikkel
>>   
I must have deleted a section of my message somehow before I sent it
- there should be advice about changing 2 variables, but there is
the default state of one, and the needed state of the other...
> 
> ah... that's good to know... BUT.... in neither case have I restarted
> the system....
> 
> I'll have a look at that config file though and see if there are any
> clues. :-)
> 
> Maybe what I need to do (as you suggest) is "service iptables save"
> after adding the rules and verifying they work correctly.
> 
> (I looked at the webmin method specifically for some form of "save these
> rules", but there is only "apply thse rules", which I did need to do)
> 
Please post back what you find, as this seams to be a strange one -
the rules should not vanish on a normally running system.  Are
logging out and logging back in at the console, or bringing down an
interface, and bringing it back up between setting the rules, and
then vanishing?

Mikkel
-- 

  Do not meddle in the affairs of dragons,
for thou art crunchy and taste good with Ketchup!

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: OpenPGP digital signature
Url : http://lists.fedoraproject.org/pipermail/users/attachments/20070820/a8cd5151/attachment-0002.bin