[CentOS] Keeping iptables in sync across multiple machines

Mon Nov 2 20:43:47 UTC 2009
m.roth at 5-cent.us <m.roth at 5-cent.us>

> Dear Mark,
>
>>> ...
>>>> So, what I am looking for really is feedback on what people are using
>>>> in the wild on multiple machines, and bonus points for people who only
>>>> use tools and mechanisms already built into the CentOS [base] repo.
>>>
>>> We are using Spacewalk to manage /etc/sysconfig/iptables files. The
<snip>
>> So, what version is Spacewalk up to? When I installed it this past
>> spring, it was version 0.4, and I upgraded to 0.5, which had just been \
>> released, the week before my contract ended the end of April.
>>
>> *I* would *never* put something that was under 1.0 (actually, 1.0.1)
>> into production.
>
> 0.6 is quite okay, but we are using a standalone Oracle instead of XE.

Ah! One good point. We used XE, which has hard limits on table size and
memory.
>
> Besides that you can always buy a Satellite Server if you need a
> proven enterprise management system. We are using both products in our
> scenario.

Where I was working wasn't ready to do that. But then, they didn't want to
spring to keep me on.

*shrug*

Got a real, permanent job now.

      mark