Linux - NewbieThis Linux forum is for members that are new to Linux.
Just starting out and have a question?
If it is not in the man pages or the how-to's this is the place!
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Before I used to run an iptables script I found on howtoforge, but now I switched to arno's firewall. The problem now is that on bootup arno is initiated first and then iptables, which effectively overrides arno's. So, should I remove the iptables script from /etc/init.d/? Doesn't arno's firewall need iptables? How can I make sure that the two don't interfere?
As you can see I am a beginner and very confused, so any help is welcome.
Thank you. I read about chkconfig and from what I understand, I can stop the init script I don't need. However, my concern is that I have to disable the iptables init script, which seems like a bad idea to me. Because, as far as I know, arno's script is based on iptables and probably it won't run without iptables.
So, does anybody know how to leave iptables, but tell it not to load the old iptables rules that I used before?
iptables is a command, not a service per se. If arno's script calls iptables when it runs, it should start all the firewall rules. What distribution is this on? I know in Red Hat or CentOS, the default firewall configs can reside in /etc/sysconfig
Sorry, it is Ubuntu 6.06 LTS Server. Arno's iptables firewall has an init script in /etc/init.d/ and a symlink in /etc/rcS.d/ while I see iptables in all run levels and I am thinking that I shouldn't disable iptables with chkconfig.
OK, I found that iptables active and inactive counters are located in /var/lib/iptables/. I guess the init script calls the active set and I don't want it to call anything, because arno's script has already started by that time. Do you know how I can accomplish this?
Both your original and the new (arnos) firewall-script use the "iptables" command to setup the filter rules for your firewall.
You should know what makes the one better than the other - after all it was you who decided to toss the prior one in favour of arnos script.
You only need one - though you really should know what one does better than the other.
AFAIK disabling a service is done by: update-rc.d -f yourfirewallscript remove
The same way you add the other script: update-rc.d arnosscript multiuser (for instance)
Now, only arno's loads. As to why I am using it, because the old script I used was rather basic and I read some good reviews of arno's and decided to switch. I guess it's more secure and it also offers some extra plugins and stuff that I am about to figure out.
Well, thanks again. I am amazed by how quickly I find the answer over here. ALWAYS! I really appreciate everyone's help!
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.