On Tue, Aug 30, 2005 at 09:26:08PM -0400, Michael Crute wrote: > > > You should use rc-update to run the startup script. Local is for commands > that you want run, not really a great way to run other startup scripts. The > command you want is probably `rc-update add rc.firewall default`. > -Mike
Last nigh I started to add rc.firewall to the default runlevel, but I noticed that there was already an iptables script in /etc/init.d. Reading through it, and it companion in /etc/conf.d, it became clear that this seemed like the more elegant solution. So I did the following: /root > /etc/rc.firewall # to start the guarddog firewall /root > /etc/init.d/iptables save # to save the current state /root > rc-update add iptables default # to start automatically /root > reboot At first this didn't work because the rc.firewall script loaded necessary kernel modules for ip-conntrack, etc... I decide to build that capability into the kernel instead of using modules. All is working right now, and I don't have to worry about any changes made to guarddog, as the iptables script saves state before shutting down. Thanks for the pointers, John - who realizes that he needs a better understanding of initscripts -- Contrary to the lie machine, the world is not safer.
pgp7e2wUYcgLj.pgp
Description: PGP signature
