On Tue, 21 Oct 2003, Donald Tyler wrote: > Hi, > > Yeah I know it works, because I ran the file using sh. I have fully > tested the firewall and I am happy with it. But I am trying to get it to > load at boot. > [snip-page] > When I restart the machine I just get an error message saying that eth1 > doesn't exist. Now this seems because the iptables file is being run > before eth1 is being activated. > > I presume I have two options: > > 1. Take the code from the fwbuilder script and merge it with the > original iptables file (now called iptables.old). I am not completely > comfortable with this since all I would do is put the code inside the > start() function, but I don't know if this would work. When instituting a new set of rules generated by fwbuilder, I run the script directly, "./nameoffile.fw". Then when I know the rules are satisfactory I issue a " service iptables save" that overwrites the /etc/sysconfig/iptables in one swell foop. The reasons being, it's the RedHat way (may not be to your liking, but it is documented by RedHat) and it should survive as system re-installation ( no disk format) or OS upgrade. I don't think rc.local could be guaranteed to survive. -- redhat-list mailing list unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe https://www.redhat.com/mailman/listinfo/redhat-list
