Hello everybody!
Aurox 9.1 (based on RedHat 9.0).
my /etc/rc.firewall:
Code:
#!/bin/bash
/sbin/modprobe ip_tables
/sbin/modprobe ip_conntrack
/sbin/modprobe ip_conntrack_ftp
/sbin/iptables -F
/sbin/iptables -P INPUT DROP
/sbin/iptables -A INPUT -i eth0 -m state --state ESTABLISHED,RELATED -j ACCEPT
/sbin/iptables -A INPUT -p tcp --dport 20:21 -j ACCEPT
/sbin/iptables -A INPUT -p tcp --dport 80 -j ACCEPT
/sbin/iptables -A INPUT -p tcp --dport 22 -j ACCEPT
my /etc/rc.local:
Code:
#!/bin/sh
touch /var/lock/subsys/local
/etc/rc.firewall
After system startup some applications don't want to start - for example wine or Gnome (fluxbox starts OK). Some applications start perfectly (ex. Mozilla), but after while i can't do anything with them.
If i remove line:
Code:
/sbin/iptables -P INPUT DROP
from /etc/rc.firewall file everything is OK.
I don't want to use
Code:
service iptables save
I would like to start script with firewall configuration at system startup. How should i do it properly?