[CentOS] Adding comments to /etc/sysconfig/iptables

Tue Apr 26 05:20:49 UTC 2011
Geoff Galitz <geoff at galitz.org>

>> assuming you are talking about /etc/sysconfig/iptables , hash is indeed
>> the comment mark, and works fine.
>> In my file on this system all comment lines have a hash as first
>> character on the line though, so perhaps it doesn't like end-of-line
>> comments but only accepts full lines of comment.

FYI, using iptable comments commands are even more useful as they are 
displayed whenever you actually list the rules (e.g. via "service iptables 
status).  For example:

-A INPUT -s -m comment --comment "I am an example comment" -j DROP