also sprach Martijn Lievaart <m@xxxxxxx> [2008.04.16.2356 +0200]: >> echo "Applying new rules..."; >> iptables-restore <new.txt; >> if [ "$?" -ne 0 ]; then >> echo "Dude, that failed horribly. (Old rules still intact.)"; >> exit 1; >> fi > > Are you sure? I think it may have committed some tables already and > errored on another. No, I am not sure. But wouldn't that be a bug? iptables-restore gives the impression to be transaction-oriented. It should be all-or-nothing, I think. -- martin | http://madduck.net/ | http://two.sentenc.es/ "wovon man nicht sprechen kann, darüber muß man schweigen." -- wittgenstein spamtraps: madduck.bogus@xxxxxxxxxxx
Attachment:
digital_signature_gpg.asc
Description: Digital signature (see http://martin-krafft.net/gpg/)
