On Thu, Nov 11, 2010 at 1:17 PM, Eric Shubert <e...@shubes.net> wrote:
> On 11/11/2010 11:59 AM, Scott Hughes wrote: > >> On Thu, Nov 11, 2010 at 12:35 PM, Eric Shubert <e...@shubes.net >> >> Something's changing iptables. If it's not changing the >> /etc/sysconfig/iptables file, then it must be changing iptables on >> the fly, after init starts iptables (which uses the >> /etc/sysconfig/iptables file). Anything in rc.local? >> >> >> -- >> -Eric 'shubes' >> >> >> I think you may have found the issue. Here is what is in rc.local >> >> ## Bring up firewall >> /sbin/iptables-restore < /etc/rc.d/firewall.ruleset >> >> I think that is what is causing my issue. >> >> Would it be okay to change the /etc/rc.d/firewall.ruleset to >> /etc/sysconfig/iptables ?? >> >> Thanks again, >> Scott >> >> > rc.local is used for local customization. I've no idea how what you have > got there. I do have a firewall.ruleset file on my system, but it doesn't > belong to any package, and I don't see anywhere that it's used. > > I would simply comment out what you have in rc.local, and let the stock > settings operate as they do. Just check to be sure that iptables is started > (# chkconfig --list iptables), and iptables should start normally with > whatever is in your /etc/sysconfig/iptables file. > > You might do > > -- > -Eric 'shubes' > Commenting out that line in rc.local seems to have done the trick. I have this same issue on two of my QMT boxes. They were both loaded from the QMT 5 ISO cd-rom. Might be something that needs to be checked. Thanks again Eric! Scott
