Don't want to rely on RH-Firewall-1-INPUT in IPTables, how do I Modify?
I've noticed that alot of folks here don't want to rely on the IPTable Rules for RH-Firewall-1-INPUT. On a fresh RHEL Server that I've deployed, I've selected a number of rules during the install phase and noticed that they all ended up under
Code:
Chain RH-Firewall-1-INPUT (2 references) Code:
Code:
Add all of the rules that were under RH-Firewall-1-INPUT into the Chain INPUT Code:
-Remove the following Chain FORWARD Code:
|
I believe you'd need the forward to go to your new INPUT now.
Why not just edit your iptables file to replace all RH-Firewall-1-INPUT references with just INPUT? The iptables file is in /etc/sysconfig. Make sure you run "service iptables restart" to make the new rules apply. By the way RHEL6 uses INPUT rather than RH-Firewall-1-INPUT. Are you doing a fresh install on a RHEL5 or earlier? You really should NOT be using REHL5 as it will be going end of support within a year or so. RHEL7 has been out for more than a year and RHEL8 is probably coming in the not too distant future. Ideally you'd move to RHEL7 if possible but at least to RHEL6. (RHEL6 is still based on 2.6.x kernel, RHEL7 is using 3.x kernel). |
Quote:
Quote:
Quote:
|
All times are GMT -5. The time now is 01:27 PM. |