Hi Andre. Sorry if this response is so late it's pointless :) I didn't see any reply posts since, so I'll just assume nobody has... re: the multiple firewall start notices: If you're running RedHat 6 or some variant which uses the same setup for starting services (everything gets started from the /etc/rc.d directory), then you could try following the sequence of execution, starting with the files in /etc/rc.d (rc.sysinit, rc, rc.local -- in that order). Look closely at what precedes and follows the ipchains and firewalls starting notices to better localize the sources of both messages. I had a similar situation on my system a while ago where i had ipchains running from /etc/rc.d/rc.local, *and* from /etc/rc.d/rc (via a link to /etc/rc.d/init.d/firewall in /etc/rc.d/rc5.d). After tangling with that particular mess, I found I had a MUCH better idea of both shell scripting, and how Linux handles startup & runlevel changes... :) If those don't reveal the source of your conundrum, another possible place it might be is in the scripts in /etc/sysconfig/network-scripts... but that's just a guess ;) *** re: /etc/sysconfig/ipchains.rules I read somewhere recently (darned if i can figure out where, now!) that one implementation of the firewall script involves calling the ruleset in from another file, specifically ipchains.rules. That's probably why it was put there. This would have been done using ipchains-save with a view to using ipchains-restore to reload it when it's time to restart firewalling. If your current firewall script has the rules written right into it, then the ipchains.rules file is probably redundant and could be removed without incident. On the other hand, you might want to have a copy of the ruleset handy one day, should some unpredicted catastrophe befall your working firewall script. :) I'd just leave it, or put a current version in it's place if it's not totally accurate. p.s. have you tried searching for +"ipchains" +"rules" ??? (that's a phrase that might work with altavista). A bit sloppy, but what can you do? also, if you haven't, check out: http://www.linuxdoc.org/HOWTO/IPCHAINS-HOWTO.html Hope this helps... If it doesn't, let me know :) -Astro, lurker. - [To unsubscribe, send mail to [EMAIL PROTECTED] with "unsubscribe firewalls" in the body of the message.]
