On Sun, 6 Jan 2002 09:22:05 -0700
Stefan Srdic <linuxbox@telusplanet.net> wrote:
> I would like to know if there would be a way (by editing the
> networking rc file) to clear all chains and then remove all iptables
> modules once networking has been halted by issuing
> /etc/init.d/networking stop?
I would suggest instead that you take a look at /etc/network/interfaces
and 'man 5 interfaces'. Specifically, add a "post-down" command or two
or four or script or whatever.
> Also, this is how I run my IPtables script:
>
> ip_tables () {
> if [ -e /sbin/iptables ] ; then
> echo -n "Initiating IPtables: "
> sh /etc/network/ip_tables
> echo "done."
> fi
> }
>
> Would there be a way where I can verify if both the iptables
> executable and script are both existent, and if not, have the rc
> script print to the terminal something like:
>
> "failed."
> "IPTables was not loaded properly"
'man bash'. You could always do;
if [ -x /sbin/iptables ]; then
if [ -r /etc/network/ip_tables ]; then
echo -n "Initiating IPtables: "
. /etc/network/ip_tables
echo "done."
else
echo "/etc/network/ip_tables not found."
fi
else
echo "/sbin/iptables not found, please install iptables."
fi
--
.--=====-=-=====-=========----------=====-----------=-=-----=.
/ David Barclay Harris Aut agere, aut mori. \
\ Clan Barclay Either action, or death. /
`-------======-------------=-=-----=-===-=====-------=--=----'
Attachment:
pgpFvplbmWp86.pgp
Description: PGP signature