I use ipchains on 2 linux boxes I have here at home (no pmfirewall). There
is a pair of scripts, one called ipchains-save, the other
ipchains-restore.
If you write a bunch of firewall rulesets and you are happy, you can just
do something similar to:
ipchains-save > /etc/firewall
Then in one of the startup scripts, you can do this:
ipchains-restore < /etc/firewall
The actual ipchains rulesets are part of the Linux kernel, and exist in
the memory of the computer, so they will go away if you set them up and
then reboot or shutdown. I had a bit of confusion about this myself when
I first started playing with ipchains, so it is understandable.
The two scripts, ipchains-save and ipchains-restore will parse the
firewall rulesets and determine which options you used when you set them
up. Then they write the command line options to the standard output,
which you then redirect into a file.
Dan
