[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Allowing packages to control iptables

Hi, I am building packages for my applications. In order for my application to run it needs to have some iptables rules. I have been thinking to create a package called iptables-management for managing iptables rules per say and fetch/store them in a directory /etc/iptables/rules.d/, then all my packages requiring special rules would install their rules in that dir. So reloading those rules would be similar to iptables-persistent - service iptables-management restart.

The challenge here is, building up the rules in a consistent and expected order, eg. the most explicit rules first.

I would love to hear others thoughts, and if there is perhaps a better way to solve this problem.


Aron Podrigal
//Be happy :-)

Reply to: