LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Debian (http://www.linuxquestions.org/questions/debian-26/)
-   -   iptables-save, but rules don't load on boot-up (http://www.linuxquestions.org/questions/debian-26/iptables-save-but-rules-dont-load-on-boot-up-502743/)

kpachopoulos 11-18-2006 06:46 AM

iptables-save, but rules don't load on boot-up
 
I enter my ip-tables and everything works fine. I then do iptables-save and reboot. Afterwards (after the boot-up) , "iptables --list" doesn't give me the rules.
What's wrong?

Thnx

blackhole54 11-18-2006 09:21 AM

iptables-save is a utility which sends an ASCII representation of the rules to stdout, which you need to then redirect to a file. iptables-restore is then used to restore these rules at boot time.

But apparently Debian has set up its own system (possibly using the mentioned utitilies) which is described here. (Please note I am not a Debian user; I am just reporting what a Google search turned up.)

cct3000 11-18-2006 11:36 PM

Quote:

Originally Posted by nocturna_gr
I enter my ip-tables and everything works fine. I then do iptables-save and reboot. Afterwards (after the boot-up) , "iptables --list" doesn't give me the rules.
What's wrong?

Thnx

iptable-save > ipt.txt can only save the iptables' rules into a text file in current directory.
It can not make your setting autorun at boot up time

Debian is using a systematical method to invoke the boot up program launching.

you can try install arno-iptables-firewall by

apt-get install arno-iptables-firewall
after that you have to configure the rules by interacting with the programs.
after you have install properly ,

cd /etc/init.d

ls arno*

you can see arno-iptables-firewall have already in this folder.

cd /etc/rcS.d

arno-iptables-firewall also in the folder.

that's mean while you boot the debian, the startup script will check /etc/rcS.d to boot all script files in have, (also look for /etc/rc5.d if you are running xwindows mode.

you can not make the script file in /etc/init.d and /etc/rcS.d manually. you must trigger Debian system program to make it.


try it. very strong program to write iptables, no need to make a firewall yourself, you can also refer to the iptables generated by this program to see how is the right iptables.


All times are GMT -5. The time now is 07:15 PM.