[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: iptables service with debian



On Fri, Apr 27, 2012 at 4:05 AM, Joe <joe@jretrading.com> wrote:
> On Fri, 27 Apr 2012 12:06:37 +0500
> Muhammad Yousuf Khan <sirtcp@gmail.com> wrote:
>>
>> Thanks for the clearing my concept.
>> however i read some of the part via google that there is a file
>> /etc/network/iptables in Debian from where all the startup scripts run
>> for FW . may be i didnt got the correct idea out of it. as i am new
>> and still learning.
>> so i thought that rc.local is not an appropriate route to choose.
>
> That's a recommended default location if you use just the iptables-save
> and -restore commands, but it isn't created on installation. A
> newly-installed Debian system has no iptables infrastructure.
>
> But the save and restore commands only give you the iptables rules, and
> you may want to do other network-related things when the 'service' is
> started, such as loading conntrack modules for unusual protocols.

It's best to run an iptables script from "/etc/network/if-pre-up.d/".


Reply to: