On Tuesday 09 July 2002 19:20, Matthias Kattanek wrote: > On Tue, 9 Jul 2002, R. Sterenborg wrote: > > ----- Original Message ----- > > From: "Mike G. Hammonds" <[EMAIL PROTECTED]> > > Subject: Redhat 7.2 Kernel > > > > > Does the default install kernel of RH7.2 have iptable support already > > > compiled in it? > > > > Yes it does. > > Nope, that is not exactly true. > All RedHat 7.x distribution with a 2.4.x kernel offer iptables as a > module. (same as ipchains) > > By default RH distries have ipchains activated. So in case you attempt > e.g. 'iptables -L' you will encounter an error message. > > no worries. easiest way around is to rename /etc/sysconfig/ipchains > to /etc/sysconfig/ipchains.notinuse. Then reboot the box and run > 'iptables' and it will autoload the respective module. > > mattes
I prefer to use: #chkconfig ipchains --level 2345 off. #chkconfig iptables --level 2345 on. because it stops the ipchains script from being run at all (which is what you really want). If you mv /etc/sysconfig/ipchains, then /etc/init.d/ipchains will still be run, but exit because /etc/sysconfig/ipchains is missing. In any case, /etc/init.d/iptables uses lsmod to find out if ipchains is running, and exits should this be the case. Jan Humme.
