ipset on CentOS6 comes with /etc/rc.d/init.d/ipset so that "service ipset reload" can be used to (re)load the configuration. CentOS7 doesn't come with an equivalent for systemd:
# systemctl reload ipset.service Failed to issue method call: Unit ipset.service failed to load: No such file or directory. # systemctl start ipset.service Failed to issue method call: Unit ipset.service failed to load: No such file or directory. # find /etc -name ipset.service #
What is the recommended procedure for loading the ipset configuration?
Thanks, Tom
On 18/02/15 10:47, Tom Limoncelli wrote:
ipset on CentOS6 comes with /etc/rc.d/init.d/ipset so that "service ipset reload" can be used to (re)load the configuration. CentOS7 doesn't come with an equivalent for systemd:
<snip>
From my Fedora 21 box, I'm *presuming* it's available on C7, I don't
have a C7 box to try it on though.
$rpm -ql "ipset-service" /etc/ipset /usr/lib/systemd/system/ipset.service /usr/libexec/ipset /usr/libexec/ipset/ipset.start-stop
HTH
P.
On Tue, Feb 17, 2015 at 7:17 PM, Peter Lawler centos@bleeter.id.au wrote:
From my Fedora 21 box, I'm *presuming* it's available on C7, I don't have a C7 box to try it on though.
$rpm -ql "ipset-service" /etc/ipset /usr/lib/systemd/system/ipset.service /usr/libexec/ipset /usr/libexec/ipset/ipset.start-stop
Sadly there is no ipset-service in the CentOS repos. I'm going to steal the init.d script from CentOS6. It works perfectly.
On Tue, Feb 17, 2015 at 7:20 PM, John R Pierce pierce@hogranch.com wrote:
that said, I suspect its deprecated in the new world of networkmanager and firewalld.
I think Don Quixote wrote firewalld. It takes everything that was wrong about iptables and amplifies them, meanwhile only fixing problems that don't exist.
Tom
Sadly there is no ipset-service in the CentOS repos. I'm going to steal the init.d script from CentOS6. It works perfectly.
If you are just going to 'borrow' a service script I'd suggest grabbing the fedora systemd service file and popping in the /etc/systemd/system directory to make direct use of a native systemd unit ...
On 2/17/2015 3:47 PM, Tom Limoncelli wrote:
ipset on CentOS6 comes with /etc/rc.d/init.d/ipset so that "service ipset reload" can be used to (re)load the configuration. CentOS7 doesn't come with an equivalent for systemd:
# systemctl reload ipset.service Failed to issue method call: Unit ipset.service failed to load: No such file or directory. # systemctl start ipset.service Failed to issue method call: Unit ipset.service failed to load: No such file or directory. # find /etc -name ipset.service #
What is the recommended procedure for loading the ipset configuration?
did you try `yum install ipset` ?
that said, I suspect its deprecated in the new world of networkmanager and firewalld.
-
James Hogarth -
John R Pierce -
Peter Lawler -
Tom Limoncelli