[ILUG] iptables

[Nick Murtagh]

On Wednesday 16 January 2002 14:25, HAMILTON,DAVID (HP-Ireland,ex2) wrote:
> 'service iptables start' does work.
> I'd never seen that service command before.  Nice one...

it's the same as doing /etc/rc.d/init.d/iptables start, just
shorter to type :)

> 'chkconfig --list iptables' gives:
> iptables	0:off  1:off  2:off  3:off  4:off  5:off  6:off
> whatever that means.....

that mean's it's off in all runlevels, ie it'll never start!

> It's from a functionality point it's a pain.  I'm already hiding behind
> another bank of firewalls, I just need the NAT....

from /etc/inittab:
# Default runlevel. The runlevels used by RHS are:
#   0 - halt (Do NOT set initdefault to this)
#   1 - Single user mode
#   2 - Multiuser, without NFS (The same as 3, if you do not have networking)
#   3 - Full multiuser mode
#   4 - unused
#   5 - X11
#   6 - reboot (Do NOT set initdefault to this)

You probably want it to start in 2 through 5, so

# chkconfig --list iptables
iptables        0:off   1:off   2:off   3:off   4:off   5:off   6:off

# chkconfig --add iptables

# chkconfig --list iptables
iptables        0:off   1:off   2:on    3:on    4:on    5:on    6:off

it should automatically start the next time you reboot.