Package: iptables-persistent Version: 0.0.20100801 Severity: important Tags: patch
The actual LSB header will start the init script (and load the iptables rules) only on runlevel S. This makes no sense because in runlevel S are no network interfaces activated and so no need for iptables rules. On the other hand in runlevel 2-5 where the network interfaces are activated, the rules are not loaded during the boot process. I attached a patch based on the actual git head to start the init script on runlevel 2-5. -- System Information: Debian Release: 6.0.3 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable') Architecture: i386 (i686) Kernel: Linux 2.6.32-5-686 (SMP w/2 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages iptables-persistent depends on: ii iptables 1.4.8-3 administration tools for packet fi iptables-persistent recommends no packages. iptables-persistent suggests no packages. -- no debconf information
>From 2a8a3c789f469ded64a509458c788a989b58e7cf Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Andreas=20R=C3=BCtten?= <andreasruet...@gmx.de> Date: Fri, 25 Nov 2011 13:20:28 +0100 Subject: [PATCH] Fix Default-Start and Default-Stop fields of the LSB header in the init script --- debian/iptables-persistent.init | 4 ++-- 1 files changed, 2 insertions(+), 2 deletions(-) diff --git a/debian/iptables-persistent.init b/debian/iptables-persistent.init index ba9f4d3..cae9157 100644 --- a/debian/iptables-persistent.init +++ b/debian/iptables-persistent.init @@ -8,8 +8,8 @@ # Provides: iptables-persistent # Required-Start: mountkernfs $local_fs # Required-Stop: $local_fs -# Default-Start: S -# Default-Stop: +# Default-Start: 2 3 4 5 +# Default-Stop: 0 1 6 # X-Start-Before: $network # X-Stop-After: $network # Short-Description: Set up iptables rules -- 1.7.4.1