I recommend you read the site iptablesrocks.org very carefully while you are making changes to your iptables firewall, as you can easily lock yourself out of your own computer with netfilter. If you had, as I suggested before, you would have found these instructions: (assuming you made a file called primary_firewall in the home directory of the root user, as the instructions on the site indicate) copy the firewall file somewhere usefull: cp /root/primary_firewall /etc/sysconfig/iptables edit /etc/rc.local with your favourite text editor: emacs /etc/rc.local (or vi, vim, xemacs, whatever) add the following line: /sbin/insmod ip_conntrack_ftp I had to use a different method because the server I "inherited" from the person who set it up was really messed up, but it should work on your average Linux box. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Paul Blondé Web Programmer enTel Communications Inc jpb@xxxxxxxx 250.633.5151 866.633.2644 > -----Original Message----- > From: netfilter-bounces@xxxxxxxxxxxxxxxxxxx > [mailto:netfilter-bounces@xxxxxxxxxxxxxxxxxxx] On Behalf Of TheNokia > Sent: Monday, May 21, 2007 12:12 PM > To: netfilter@xxxxxxxxxxxxxxxxxxx > Subject: iptables doesn't keep chain list after reboot > > > Ok, both of you tell me to put in /etc/rc.local but can you > give me an example ? > > I don't want to do something wrong. >
