[wplug] redhat 9 firewall problem
Vanco, Don
don.vanco at agilysys.com
Mon Sep 29 13:13:53 EDT 2003
squeegy-wplug at squeegy.org <mailto:squeegy-wplug at squeegy.org> scribbled on
Monday, September 29, 2003 12:17 PM:
> I have a strange problem that maybe one of the RH gurus can help me
> with. I have a set of rules in /etc/sysconfig/iptables that is I
> start my firewall with they work fine, but on bootup and periodically
> the rules change and are more restrictive, breaking stuff. I have
> stopped iptables only to have the rules to show up a short
> time later. I have looked in /etc/init.d and the only
> scripts making iptables calls are ntp and iptables. I have
> moved /etc/system/iptables to another name but seeings it
> doesn't seem to use the file, the rules keep being reapplied.
> this was a new RedHat 9 install not an upgrade. I am not
> doing anything in cron that I can tell. Anybody have any
> suggestions? Thanks.
Does /etc/sysconfig/iptables-config contain what you might expect it
to contain WRT start time rules, saving, etc? Are you running any other
services that might call on iptables (as you've seen that ntpd does)?
Anything in the logs (boot.log, messages)? I know that RH uses "lokkit" for
a few things, but I've never investigated fully....
Not sure if it was in 9 or not, but you might also want to comb over
/etc/sysconfig/network-scripts/ifup-post as there can be rulesets defined
there as well. (pretty sure that's what does the punching for ntpd).
Don
More information about the wplug
mailing list