Hi, I am building packages for my applications. In order for my application to run it needs to have some iptables rules. I have been thinking to create a package called iptables-management for managing iptables rules per say and fetch/store them in a directory /etc/iptables/rules.d/, then all my packages requiring special rules would install their rules in that dir. So reloading those rules would be similar to iptables-persistent - service iptables-management restart.
The challenge here is, building up the rules in a consistent and expected order, eg. the most explicit rules first.
I would love to hear others thoughts, and if there is perhaps a better way to solve this problem.
Thanks.
--
Aron Podrigal
-
//Be happy :-)