Hi,

I encountered this problem several times so far.

I have two linux boxes (centos) acting as firewall-routers between two networks. Each works on it's own and networks are not related. Everything is ok until I reboot machine but when it comes back, machine doesn't route between networks anymore. After I restart iptables service and re-run my rules it's fine again.

After each change I do

#service iptables save

so I assume that iptables are supposes to re-read rules after machine boots, but .. it doesn't.


Centos 4.7 and 5.2

Anybody had a similar problem so far?

What does chkconfig show?

chkconfig is fine

# chkconfig --list iptables
iptables 0 off 1 off 2 on 3 on 4 on 5 on 6 off

While posting this line I got some stupid message about icons ... so I just removed colons.

Is IP forwarding enabled when the system starts?

Or does that too get reset like with the iptables configuration?

PS: There's an option to disable smilies when you post.

/proc/sys/net/ipv4/ip_forward is 0 when machine boots but it's activated once you execute iptables scrips ... hmmmm Win32sux you opened my eyes.

Since I have that in my script, when machine boots it applies only rules saved before, but not kernel parameters?! Am I right?

Correct, iptables has nothing to do with it.

If you want it to stick, either add an echo to rc.local (or whatever) or make the appropriate edit to /etc/sysctl.conf.

I just did correct /etc/sysctl.conf.

Thank you for your help