kadischi post failed -- Reposted here -- iptables always started no matter what
Phil Meyer
pmeyer at themeyerfarm.com
Fri Aug 26 21:14:57 UTC 2011
Please tolerate this post intended for the livecd-creator list. They
are bouncing me now days. Maybe its time I changed deodorant? I dunno ...
I am desperate!
---
livecd-tools-15.7-1.fc15.x86_64
Kickstarts all contain:
firewall --disabled
selinux --disabled
I even went as far as this:
%packages
---
[stuff deleted]
---
-system-config-firewall*
and
%post
---
[stuff deleted]
---
/sbin/chkconfig iptables off
/sbin/chkconfig ip6tables off
echo '#' > /etc/sysconfig/iptables
echo '#' > /etc/sysconfig/ip6tables
echo '#' > /etc/sysconfig/iptables-config
echo '#' > /etc/sysconfig/ip6tables-config
echo "#\n--disabled" > /etc/sysconfig/system-config-firewall
%end
What happens is that /etc/sysconfig/iptables, /etc/sysconfig/iptables,
and /etc/sysconfig/system-config-firewall ALWAYS get recreated AFTER
%post runs!
That causes the iptables kernel modules to load, and filtering started,
even though iptables is actually configured for off and does not start.
What is doing that? I cannot find it.
Any help is appreciated.
Thanks!
More information about the users
mailing list