Ben Reser <[EMAIL PROTECTED]> writes: > On Wed, Aug 21, 2002 at 12:47:01PM +0200, Guillaume Cottenceau wrote: > > We had this problem for 8.0 or 8.1 (can't remember), it was due > > to the fact that iptables package had a default config file, and > > when booting it removed the rules set up by connection sharing a > > while before in the boot process. > > > > But I don't have enough time to test that now, I have still much > > rpmdrake stuff to handle :-(. > > > > I hope I'll have time to fix before the release.. > > Frankly I don't think connection sharing should be adding rules outside > of the way the iptables startup script works. Because anyone using the > /etc/sysconfig/iptables file to configure their iptables is going to > overwrite their connection sharing config. This basically means that
Well the problem is, first, back to the time where it was written it worked both for 2.2 (ipchains) and 2.4; second, I'm no iptables/network guru so when I had to write drakgw, I read some documentations, and they indicated that the firewall configuration should go to /etc/rc.c/rc.firewall, and voila. But our initscripts run rc.firewall first, /etc/sysconfig/iptables second, so it overwrites rc.firewall stuff, yes. I think this is not mainly my fault, rather the non standard way we handle multiple files setting up iptables stuff, rc.firewall plus sysconfig/iptables plus.. who knows? -- Guillaume Cottenceau - http://people.mandrakesoft.com/~gc/
