[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: iptables service with debian

On Mon, Apr 30, 2012 at 11:14:36AM -0400, Rob Owens wrote:
> On Sat, Apr 28, 2012 at 01:15:52PM -0400, Tom H wrote:
> > On Sat, Apr 28, 2012 at 4:30 AM, Pascal Hambourg <pascal@plouf.fr.eu.org> wrote:
> > > Hello,
> > > Tom H a écrit :
> > >> On Fri, Apr 27, 2012 at 6:59 PM, Pascal Hambourg <pascal@plouf.fr.eu.org> wrote:
> > >>> Tom H a écrit :
> > >>>> It's best to run an iptables script from "/etc/network/if-pre-up.d/".
> > >>> Only for the rules which are related to a specific interface. Ruleset
> > >>> initialization should not be done from there.
> > >>
> > >> Why not?
> > >
> I have tried to use /etc/network/if-pre-up.d on my laptop (which uses
> NetworkManager) and it does not load my iptables rules.  But if I call
> my script manually, it will load properly.  Is NetworkManager
> incompatible with /etc/network/if-pre-up.d?
> 
> In the meantime, I'm trying out iptables-persistent.  I have it installed now, 
> but there is no manpage and nothing useful in /usr/share/doc.  Time to
> do some research...
> 
Well, it didn't take long to find the answer on the internet.  Get your
firewall set up and then:

iptables-save > /etc/iptables/rules

I tested it and it works!

-Rob
Reply to: