On Mon, 2006-02-06 at 23:08 -0500, Christopher K. Johnson wrote: > Gerhard Magnus wrote: > > >root@PuteA Mon Feb 06 16:11:48 > >[268] /home/magnusg $ iptables -I INPUT -s 192.168.1.0/24 -p udp --dport > >9000 -j ACCEPT > > > >Entering "iptables-save" before rebooting doesn't work; "iptables-save > >-c" as it says in the "Red Hat Linux Bible" doesn't work either. What's > >the right command here, in FC4? "service iptables save" This does work to save the tables to /etc/sysconfig/iptables for me. > > > >Thanks again for the help. > >Jerry > > > > > > > You have choices. First of all iptables-save does work, but it writes > by default to stdout, not to /etc/sysconfig/iptables which is the rule > file loaded by the iptables service upon startup. So you could redirect > output from the command to that file: > 'iptables-save >/etc/sysconfig/iptables' > > Second you could tell the iptables service script to save it for you: > 'service iptables save' > > Or third, you could edit /etc/sysconfig/iptables yourself to insert the > lines > # Permit access to slimserver > -A RH-Firewall-1-INPUT -s 192.168.1.0/24 -p udp --dport 9000 -j ACCEPT > > right below the line: > -A RH-Firewall-1-INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT > > The latter method will preserve comments in that file, while the first > two methods will destroy them. > > Chris > > -- > "Spend less! Do more! Go Open Source..." -- Dirigo.net > Chris Johnson, RHCE #804005699817957 >
