[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#626424: Please implement a method to save and restore netfilter rules at boot

Hi,

If I remember right such functions were removed from the iptables package for
various good reasons, for example to avoid that people lock themselves  out.

Implementing something similar is pertty easy, add something like

pre-up iptables-restore < /etc/network/iptables.save || true

to the network config in your /etc/network/interfaces and at the point when you
have a well working iptables config use
iptables-save > /etc/network/iptables.save

I'd never recommend to let something save iptables rules automatically. Do it
manually when you;re sure that you have a working configuration.

Or even better, use ferm instead.

-- 
 Bernd Zeimetz                            Debian GNU/Linux Developer
 http://bzed.de                                http://www.debian.org
 GPG Fingerprint: ECA1 E3F2 8E11 2432 D485  DD95 EB36 171A 6FF9 435F
Reply to: