Auto start iptables script file fedora 35

linuxgurusa · 02-10-2022, 05:59 AM

Hi guys, please assist, step my step even if needed.

I recently migrated to Fedora 35 , using Centos all these years, but Centos is now EOL as of end 2021.

I always made a script file under /etc/rc.d/init.d/firewall which contains a proper iptables firewall script file I have been using for all these years.

I made some minor changes, and even works 100% on a Fedora 35 server.

Problem is that when the server reboots, obviously no rules are loaded, because Fedora 35 don't boot scripts anymore

I even tried running the script, all works 100%, then do a iptables-save > /etc/sysconfig/iptables. But when I restart, no internet access, even confirming the saved iptables rules are still there ?? but once I run my script file again under /etc/rc.d/init.d/firewall, everything works again 100%

Please help ...

jmgibson1981 · 02-10-2022, 07:02 AM

Rebuild your script into a case statement. Then call it with a systemd service as such.

Code:

[Unit]
Description = Creates router iptables configuration
After = network.target
Requires = network.target

[Service]
User = root
Group = root
Type = oneshot
ExecStart = /usr/local/bin/homerouter.sh load %i
ExecStop = /usr/local/bin/homerouter.sh stop %i
RemainAfterExit = yes

[Install]
WantedBy = multi-user.target

michaelk · 02-10-2022, 07:49 AM

There should be an iptables service that needs to be enabled.

sudo systemctl enable iptables

That should run the iptables-restore script at boot up

https://docs.fedoraproject.org/en-US...ptables-rules/