On Wed, 2006-08-02 at 21:13 +0000, James wrote: > Alexander Kirillov <nevis2us <at> infoline.su> writes: > > > > > Is their a way to get 'rc-update add <my_firewall> default' to launch > > > my_firewall without putting it in the /etc/init.d/ dir and using the > > > runscipt template for my script? > > > > thoughts, suggestions and examples are most welcome. > > Keep your script in /etc and run it once. > > OK, but how will it get discovered again upon reboot?
when you use iptables-save, your script gets saved in the IPTABLES_SAVE location in /etc/conf.d/iptables > /etc/init.d/iptables will overwrite what my_firewall.sh does. > as it is currently doing.... > > > > If you have SAVE_ON_STOP="yes" in /etc/conf.d/iptables > > your rules will be restored whenever you restart iptables. > > Um, maybe I missing something but searching for "SAVE_ON" > only reveals this line in the /etc/init.d/iptables script: you're looking in init.d, look in conf.d - this is where you customise behaviour for init scripts... I use webmin to create the initial iptables rules, then edit the file by hand that I specified in /etc/conf.d/iptables, if I have to. webmin is pretty good, so usually I don't have to edit anything by hand... HTH, -- Iain Buchanan <iaindb at netspace dot net dot au> "By golly, I'm beginning to think Linux really *is* the best thing since sliced bread." (By Vance Petree, Virginia Power) -- [email protected] mailing list
