11 Sep
2016
11 Sep
'16
3:55 p.m.
Hello,
I have been using ipset to blacklist badbots. Works like a champ!
The only problem is if I do a system reboot, I lose the ipset and the rule.
I changed /etc/sysconfig/iptables.conf to:
IPTABLES_SAVE_ON_RESTART="yes" IPTABLES_SAVE_ON_STOP="yes"
And followed the instructions in:
https://www.centos.org/forums/viewtopic.php?t=3853
The changes are still not saved.
The rules show up in the running /etc/syscong/iptables but are lost on a reboot.
Also, firewalld is not installed. This is a CentOS 6.8 system.
One question, do I need to stop iptables before I add the rules? I have seen examples where sometimes they do and sometimes they don't.
TIA