On Mon, Dec 5, 2011 at 2:32 PM, Timothy Madden terminatorul@gmail.com wrote:
Hello
I have set up NAT with iptables for an openvpn connection, so that the VPN server could give VPN clients access to the entire sub-net of the server.
The probelm is if I start system-config-securitylevel to say disable the firewall, and then again to enable it, my iptable rules are gone !
I did run `service iptables save` before.
Is there something I can do to prevent this ? Is there a gui interface to enable NAT over a VPN connection that cooperates with system-config-network ?
Not sure what the GUI tool does (I'd assume it clears iptables if you tell it to disable the firewall...) but 'service iptables save' writes a file named iptables in /etc/sysconfig that you should be able to back up somewhere. However, a normal 'service iptables stop' which will happen in a shutdown/reboot, etc. will also overwrite that file.