Is it feasible to write protect the /etc/sysconfig/iptables file so nothing can overwrite it, such that at least the config is persistent through a reboot? If not, is there a better way to accomplish this?
Thanks! jlc
On Tue, May 27, 2008 at 9:33 PM, Joseph L. Casale JCasale@activenetwerx.com wrote:
Is it feasible to write protect the /etc/sysconfig/iptables file so nothing can overwrite it, such that at least the config is persistent through a reboot? If not, is there a better way to accomplish this?
chmod a=r /etc/sysconfig/iptables ??? chattr +i /etc/sysconfig/iptables ???
I really didn't understand what you are trying to accomplish. Please give more details, perhaps explain what problem are you trying to solve.
Filipe
Joseph L. Casale a écrit :
I really didn't understand what you are trying to accomplish. Please give more details, perhaps explain what problem are you trying to solve.
Filipe
Filipe, No problem, but rather just want to make sure the original config never changes or persists past a reboot.
Thanks, jlc _______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
You can add your iptables rules on command line and when you are satisfied do a: service iptables save It will rewrite the rules into /etc/sysconfig/iptables. Make sure your iptables service is configured for being started on boot (chkconfig iptables on).
Sebastien.
-
Filipe Brandenburger -
Joseph L. Casale -
Sébastien AVELINE