Re: Docs for /etc/sysconfig/iptables and iptables-config?

From: Alexander Dalloz (alexander.dalloz_at_uni-bielefeld.de)
Date: 01/29/04

  • Next message: Mark Mielke: "Re: Fewer partitions are better (Re: Disk Layout/Partitioning Practices)" 
    To: fedora-list@redhat.com
Date: Thu, 29 Jan 2004 18:47:59 +0100

    Am Do, den 29.01.2004 schrieb Shawn Iverson um 18:27:
    > I was wondering if someone could point me to documentation on the
    > /etc/sysconfig/iptables and iptables-config files. I currently have
    > iptables turned off on FC1 and am using David Ranch's Masquerade-HOWTO
    > scripts with modifications. I would rather set up my iptables the "Fedora
    > way" and use the native iptables init and sysconfig scripts. I found info
    > in iptables-save, iptables-restore, and iptables in the man pages, but that
    > is about it.
    >
    > Can I simply do the following with my iptables up and running and then
    > reconfigure my init scripts?
    >
    > iptables-save > /etc/sysconfig/iptables

    Yes. Another possibility is:

    /etc/init.d/iptables save

    The format of the /etc/sysconfig/iptables file is in my eyes
    self-explaining. There is a section for each table (nat and filter by
    default) and each line in the iptables syntax just without iptables as
    command name in front. To know more about iptables you should visit and
    read www.netfilter.org.

    Just set up your iptables roules. What is active you can get with
    "iptables -t filter -L -n -v" for the filter table or any other table
    like the nat table with "iptables -t nat -L -n -v". After finished
    setting up the ruleset just save your work into the file mentioned above
    with "/etc/init.d/iptables save". Run "chkconfig --list iptables" to be
    sure your iptables is started in your runlevel.

    The iptables-config file in /etc/sysconfig is just as it is, setting
    options to no or yes.

    Alexander 

    -- 
Alexander Dalloz | Enger, Germany | GPG key 1024D/ED695653 1999-07-13
Fedora GNU/Linux Core 1 (Yarrow) on Athlon CPU kernel 2.4.22-1.2149.nptl
Sirendipity 18:39:34 up 3:27, 7 users, 0.00, 0.05, 0.08 
                   [ Γνωθι σ'αυτον - gnothi seauton ]
-- 
fedora-list mailing list
fedora-list@redhat.com
To unsubscribe: http://www.redhat.com/mailman/listinfo/fedora-list
  • Next message: Mark Mielke: "Re: Fewer partitions are better (Re: Disk Layout/Partitioning Practices)"

    Relevant Pages

    • Re: How to reinstall without changing anything?
      ... > back before I got a good iptables set up and turned off sshd etc. I've run ... > recall any way to avoid answering a million questions at install time. ... config files, scripts, tex, etc. ... etc/hotplug settings, ppp settings. ...
      (Debian-User)
    • Re: Docs for /etc/sysconfig/iptables and iptables-config?
      ... >iptables turned off on FC1 and am using David Ranch's Masquerade-HOWTO ... I would rather set up my iptables the "Fedora ... >way" and use the native iptables init and sysconfig scripts. ...
      (Fedora)
    • P2PWalls IpTables scripting language "ROPE" - Version 20050613
      ... The iptables ROPE module (from the P2PWall project) enables users to ... Example scripts are povided to identify Gnutella, Bittorrent, eDonkey ...
      (comp.os.linux.announce)
    • Re: Help with configuring IPTABLES
      ... examples of firewalling and nat scripts can be found at: ... A great introduction to IPTABLES by Oskar Andreasson is at ... > clients connecting through the internal NIC get NATed for outbound ...
      (comp.os.linux.security)
    • [SLE] SuSEfirewall2
      ... I really like SuSEfirewall2 - i think it's a nice logical way to do ... basic firewalling (so far I've always reverted to hand made iptables ... scripts for more advanced stuff...) ... hansdp at sagacit dot com ...
      (SuSE)