Scott, Iptables is automatically loaded. You just need to save your addition to the iptables. # iptables-restore < //etc/sysconfig/iptables.save/, replace this with whatever your edited file name is.
As Scott noted below running the iptables-save once you've run the firewall.sh script will save the modified settings to the iptables too. I had a brain fart, iptables is always started it just may be empty and not block anything. Running the firewall script populates the iptables. On 05/26/2010 03:15 PM, Scott Hughes wrote: > I don't think it is in the init scripts, or it would remain after a > reboot. How does one check the init scripts, please? > > Thanks! > > > On 5/26/10 5:16 PM, Maxwell Smart wrote: >> That's presuming that it is in the init scripts. Ignore this moment of >> stupidity. >> >> On 05/26/2010 02:46 PM, Eric Broch wrote: >> >>> Scott Hughes wrote: >>> >>>> What is the proper way to add a rule to the firewall that will >>>> survive a reboot of the QMT server? >>>> >>>> When I installed Pyzor onto my server, I had to open a hole in the >>>> firewall in order for it to work properly. I did this by adding the >>>> rule to the firewall.sh script. Now, when the server reboots, I have >>>> to run the firewall.sh script to open that port back up. Here is >>>> what I put in the firewall.sh script: >>>> >>>> ## Allow pyzor communications (port 24441) >>>> iptables -A INPUT -p tcp -m udp --syn --dport 24441 -j ACCEPT >>>> >>>> Once I run the firewall.sh script, all is well ... until the next >>>> reboot, that is. >>>> >>>> Thanks, >>>> >>>> Scott >>>> >>>> >>> after you run firewall.sh run the following command at the command >>> line prompt >>> #iptables save >>> >>> --------------------------------------------------------------------------------- >>> >>> Qmailtoaster is sponsored by Vickers Consulting Group >>> (www.vickersconsulting.com) >>> Vickers Consulting Group offers Qmailtoaster support and >>> installations. >>> If you need professional help with your setup, contact them today! >>> --------------------------------------------------------------------------------- >>> >>> Please visit qmailtoaster.com for the latest news, updates, and >>> packages. >>> To unsubscribe, e-mail: >>> qmailtoaster-list-unsubscr...@qmailtoaster.com >>> For additional commands, e-mail: >>> qmailtoaster-list-h...@qmailtoaster.com >>> >>> >>> >> -- Cecil Yother, Jr. "cj" cj's 2318 Clement Ave Alameda, CA 94501 tel 510.865.2787 | fax 510.864.7300 http://yother.com
