I would agree that the easiest way is to use a file for storage -- but
look at the ipchains-save and ipchains-restore commands to automate this
process for you (it might save typing --especially if you have tools
like Snort/Guardian that update the ipchains rules automatically).
 
Dan

        -----Original Message----- 
        From: Kevin Druet 
        Sent: Sat 8/18/2001 9:35 AM 
        To: [EMAIL PROTECTED] 
        Cc: 
        Subject: Re: ipchains rules deleted after reset!!!
        
        
        the easiest way to do this is simply add the rules to the
/etc/rc.d/rc.local file
         
        Our client servers we use a file called rc.firewall wich resides
in /etc 
        then we create a file called firewall wich looks somthing like
this, (this is off the top of my head so may have bug)
         
        #!/bin/sh
        # Source function library.
        . /etc/rc.d/init.d/functions
         
        # See how we were called.
        case "$1" in
          start)
                /etc/rc.firewall
                echo "Firewall Started"
                ;;
          stop)
                ipchains -F
                echo "Firewall Shut Down"
                ;;
          reload)
                ipchains -F
                /etc/rc.firewall
                echo "Firewall Reloaded"
                ;;
          *)
                echo "Usage: $0 {start|stop|reload}"
                exit 1
        esac
        exit 0
        
        this file resides in /etc/rc.d/init.d  we then make sure that it
is +x chmod +x /etc/rc.d/init.d/firewall and then snap a link to it into
the rc3.d runlevel to have it start on boot,
         
        ln -s /etc/rc.d/init.d/firewall /etc/rc.d/rc3.d/S91firewall
         
        now on boot, the system will load the firewall, and you are able
to stop and restart as well. 
         
        the only file you ever need to edit is the rc.firewall file
         
        I hope this helps

                ----- Original Message ----- 
                From: Nikolaus Franz <mailto:[EMAIL PROTECTED]>  
                To: [EMAIL PROTECTED] 
                Sent: Sunday, August 19, 2001 11:21 AM
                Subject: ipchains rules deleted after reset!!!

                hello,
                can somebody help me.
                i install some ipchains rules, but always on server
reset they are deleted
                how can i fix the rules permanent
                thanks a lot
                niko

------------------------- The freeVSD Support List --------------------------
Subscribe:   mailto:[EMAIL PROTECTED]?body=subscribe%20freevsd-support
Unsubscribe: mailto:[EMAIL PROTECTED]?body=unsubscribe%20freevsd-support
Archives:    http://freevsd.org/support/mail-archives/freevsd-support
-----------------------------------------------------------------------------

Reply via email to