Hello,
I've been using the DHCP rules from the tutorial by Oskar Abdreasson, with
a few minor required changes for my MDK 8.1 system. ( Single-user workstation
, DSL Internet Connection.)
My problem is one of loading the rules at the proper time on my system, I
believe. I am encountering a strange problem, hence this letter.
My rules file is called /home/robert/iptables, which is a derivative of
Oskar's file. If I execute "/bin/sh iptables", it takes a few seconds to
load, and then I will do a iptables -L to see the results.
All the rules from his examples are nicely layed out and formatted. I
assume, at this point, that I am protected by these same rules, anotherwords,
they are active. I can go on-line to access the Internet, send mail, etc.
So after checking that my system was working correctly with these rules, I
put the same "/bin/sh /home/robert/iptables" command into my
/etc/rc.d/rc.local script file, and rebooted.
This time however, doing an "iptables -L", I get about 100+ rules listed,
which bears no resemblance to Oskar's example, and now my Internet and email
won't work. First I checked both the MDK Control center and tksysv to make
sure that iptables was not loaded as a daemon, and it was not. Then I did a
"service iptables stop", then a "service iptables start" to reset all the
rules. I then was left with the three basic ACCEPT rules.
Once again, I executed "/bin/sh /home/robert/iptables", and did a
"iptables -L" and everything was layed out normally, and the Internet and
email were both working again.
I had previously deleted my /etc/sysconfig/iptables file, created from a
"service iptables save" command. For some unknown reason, when I did this
per Oskar's tutorial, after loading my /home/robert/iptables rules, and
rebooting, I had the same problem as I have now.
I guess the question is: Why, when I execute the script manually to load
the rules, does it work correctly, but when I put the same command in a
system script, I get entirely different results?
Thanks,
Robert
