On 09/17/2013 10:23 PM, Matthew Cengia wrote:
> Given you're running Kamikaze, you're unlikely to have the
> iptables-utils package installed (you may be able to install it, giving
> you the iptables-save and iptables-restore commands; a script using
> these would be quicker), so in its absense:
I should probably mention at this point that custom firewall rules for
OpenWrt should be entered as iptables commands in /etc/firewall.user
(basically a glorified shell script, but it gets called at the
appropriate point during network initialisation).
I would *not* encourage the use of iptables-{save,restore} on OpenWrt,
as you will be overwriting the existing rules, and any network interface
changes will not be reflected in the firewall structure if you're
modifying an old and shaggy iptables dump.
If you absolutely *insist* on loading your rules with iptables-restore
(NOT recommended), you should probably disable the built-in firewall
script (I'll leave doing that as an exercise to the reader
*cough*/etc/init.d/firewall disable*cough*).
_______________________________________________
luv-main mailing list
[email protected]
http://lists.luv.asn.au/listinfo/luv-main
