-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Joshua Schmidlkofer wrote: | *note: before installing this, I recommend you do this: | | chkconfig --level 345 ipchains off | chkconfig --level 345 iptables off
Honestly - I'd recommend not turning off iptables. Rather - run the canned script once, then do the following: service iptables save After that - the init.d process will read the saved firewall from /etc/sysconfig/iptables and load it each time *before* your network interfaces come up. If you're calling a script from rc.local, chances are it's being started *after* ETHx is brought up which is leaving your machine open/vulnerable for a brief time. Unless the script creates a dynamic firewall each time it runs, there's no real reason to circumvent Red Hat's tools. They're there for a good reason. :-) - -Rick - -- Rick Johnson, RHCE - [EMAIL PROTECTED] Linux/WAN Administrator - Medata, Inc. PGP Public Key: https://mail.medata.com/pgp/rjohnson.asc -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (MingW32) Comment: Signed and/or encpryted for everyone's protection. iEYEARECAAYFAj3w3HAACgkQIgQdhlSHZgO8pgCg+khASts3iNsnU5cxmlMmTo31 dCgAoIUZUsQp7UBCXdORBHq8lmZpYXAY =TxDL -----END PGP SIGNATURE----- -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED]?subject=unsubscribe https://listman.redhat.com/mailman/listinfo/redhat-list
