Author: robert
Date: 2011-08-16 17:56:10 -0600 (Tue, 16 Aug 2011)
New Revision: 1659
Added:
trunk/BOOK/bootscripts/hlfs/iptables
Modified:
trunk/BOOK/bootscripts/Makefile
Log:
Added iptables boot script
Modified: trunk/BOOK/bootscripts/Makefile
===================================================================
--- trunk/BOOK/bootscripts/Makefile 2011-08-16 23:51:42 UTC (rev 1658)
+++ trunk/BOOK/bootscripts/Makefile 2011-08-16 23:56:10 UTC (rev 1659)
@@ -26,6 +26,7 @@
install -m ${MODE} hlfs/init.d/cleanfs ${EXTDIR}/rc.d/init.d/
install -m ${CONFMODE} hlfs/init.d/functions ${EXTDIR}/rc.d/init.d/
install -m ${MODE} hlfs/init.d/halt ${EXTDIR}/rc.d/init.d/
+ install -m ${MODE} hlfs/init.d/iptables ${EXTDIR}/rc.d/init.d/
install -m ${MODE} hlfs/init.d/console ${EXTDIR}/rc.d/init.d/
install -m ${MODE} hlfs/init.d/consolelog ${EXTDIR}/rc.d/init.d/
install -m ${MODE} hlfs/init.d/localnet ${EXTDIR}/rc.d/init.d/
@@ -61,12 +62,15 @@
ln -sf ../init.d/sysklogd ${EXTDIR}/rc.d/rc3.d/S10sysklogd
ln -sf ../init.d/network ${EXTDIR}/rc.d/rc3.d/S20network
ln -sf ../init.d/random ${EXTDIR}/rc.d/rc3.d/S25random
+ ln -sf ../init.d/iptables ${EXTDIR}/rc.d/rc3.d/S19iptables
ln -sf ../init.d/sysklogd ${EXTDIR}/rc.d/rc4.d/S10sysklogd
ln -sf ../init.d/network ${EXTDIR}/rc.d/rc4.d/S20network
ln -sf ../init.d/random ${EXTDIR}/rc.d/rc4.d/S25random
+ ln -sf ../init.d/iptables ${EXTDIR}/rc.d/rc4.d/S19iptables
ln -sf ../init.d/sysklogd ${EXTDIR}/rc.d/rc5.d/S10sysklogd
ln -sf ../init.d/network ${EXTDIR}/rc.d/rc5.d/S20network
ln -sf ../init.d/random ${EXTDIR}/rc.d/rc5.d/S25random
+ ln -sf ../init.d/iptables ${EXTDIR}/rc.d/rc5.d/S19iptables
ln -sf ../init.d/network ${EXTDIR}/rc.d/rc6.d/K80network
ln -sf ../init.d/sysklogd ${EXTDIR}/rc.d/rc6.d/K90sysklogd
ln -sf ../init.d/sendsignals ${EXTDIR}/rc.d/rc6.d/S60sendsignals
Added: trunk/BOOK/bootscripts/hlfs/iptables
===================================================================
--- trunk/BOOK/bootscripts/hlfs/iptables (rev 0)
+++ trunk/BOOK/bootscripts/hlfs/iptables 2011-08-16 23:56:10 UTC (rev
1659)
@@ -0,0 +1,60 @@
+#!/bin/sh
+# Begin $rc_base/init.d/iptables
+
+#$LastChangedBy: bdubbs $
+#$Date: 2005-08-01 15:29:19 -0400 (Mon, 01 Aug 2005) $
+
+. /etc/sysconfig/rc
+. $rc_functions
+
+case "$1" in
+ start)
+ if [ -x /etc/rc.d/rc.iptables ]; then
+ boot_mesg "Starting iptables..."
+ loadproc /etc/rc.d/rc.iptables
+ fi
+ ;;
+
+ lock)
+ boot_mesg "Locking system iptables firewall..."
+ /sbin/iptables --policy INPUT DROP
+ /sbin/iptables --policy OUTPUT DROP
+ /sbin/iptables --policy FORWARD DROP
+ /sbin/iptables --flush
+ /sbin/iptables -t nat --flush
+ /sbin/iptables -t mangle --flush
+ /sbin/iptables --delete-chain
+ /sbin/iptables -t nat --delete-chain
+ /sbin/iptables -t mangle --delete-chain
+ /sbin/iptables -A INPUT -i lo -j ACCEPT
+ /sbin/iptables -A OUTPUT -o lo -j ACCEPT
+ boot_mesg_flush
+ ;;
+
+ clear)
+ boot_mesg "Clearing system iptables iptables..."
+ /sbin/iptables --policy INPUT ACCEPT
+ /sbin/iptables --policy OUTPUT ACCEPT
+ /sbin/iptables --policy FORWARD ACCEPT
+ /sbin/iptables --flush
+ /sbin/iptables -t nat --flush
+ /sbin/iptables -t mangle --flush
+ /sbin/iptables --delete-chain
+ /sbin/iptables -t nat --delete-chain
+ /sbin/iptables -t mangle --delete-chain
+ boot_mesg_flush
+ ;;
+
+ status)
+ /sbin/iptables --numeric --list
+ /sbin/iptables -t nat --numeric --list
+ /sbin/iptables -t mangle --numeric --list
+ ;;
+
+ *)
+ echo "Usage: $0 {start|clear|lock|status}"
+ exit 1
+ ;;
+esac
+
+# End $rc_base/init.d/iptables
--
http://linuxfromscratch.org/mailman/listinfo/hlfs-book
FAQ: http://www.linuxfromscratch.org/faq/
Unsubscribe: See the above information page
