RE: iptables doesn't keep chain list after reboot

[Paul Blondé <jpb@entel.ca>]

I recommend you read the site iptablesrocks.org very carefully while you are
making changes to your iptables firewall, as you can easily lock yourself
out of your own computer with netfilter. If you had, as I suggested before,
you would have found these instructions:

(assuming you made a file called primary_firewall in the home directory of
the root user, as the instructions on the site indicate)

copy the firewall file somewhere usefull:

cp /root/primary_firewall /etc/sysconfig/iptables

edit /etc/rc.local with your favourite text editor:

emacs /etc/rc.local (or vi, vim, xemacs, whatever)

add the following line:

/sbin/insmod ip_conntrack_ftp

I had to use a different method because the server I "inherited" from the
person who set it up was really messed up, but it should work on your
average Linux box.



~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Paul Blondé
Web Programmer
enTel Communications Inc
jpb@entel.ca
250.633.5151
866.633.2644
 


> -----Original Message-----
> From: netfilter-bounces@lists.netfilter.org 
> [mailto:netfilter-bounces@lists.netfilter.org] On Behalf Of TheNokia
> Sent: Monday, May 21, 2007 12:12 PM
> To: netfilter@lists.netfilter.org
> Subject: iptables doesn't keep chain list after reboot
> 
> 
> Ok, both of you tell me to put in /etc/rc.local but can you 
> give me an example ?
> 
> I don't want to do something wrong.
>