FAQ Search Today's Posts Mark Forums Read
» Video Reviews

» Linux Archive

Linux-archive is a website aiming to archive linux email lists and to make them easily accessible for linux users/developers.


» Sponsor

» Partners

» Sponsor

Go Back   Linux Archive > Debian > Debian User

 
 
LinkBack Thread Tools
 
Old 01-16-2009, 08:58 PM
Paul Cartwright
 
Default iptables/firestarter

I am having a small problem with my system. I started a small web server, so I
could share photos. nginx & gallery2 are working just fine, easy to setup and
use! The problem is, I just rebooted, and I have to rerun the iptables
command to open port 80 for my web server again. I see there is firestarter
on my system but it isn't running, and I don't think I ever set it up. All I
want is for my web port rule to start every time I boot, but I can't find
anywhere in the system where iptables is saved, or where to put this one line
rule so it starts every time.
wiki.debian.org didn't have an iptables section, just shorewall.
--
Paul Cartwright
Registered Linux user # 367800
Registered Ubuntu User #12459


--
To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
 
Old 01-17-2009, 02:35 AM
"Umarzuki Mochlis"
 
Default iptables/firestarter

Perhaps you can run
# update-rc.d <your-desired-program>

To make iptables start at boot-up for every runlevel. never tried this
but i read from http://www.rexx.com/~dkuhlman/iptables_install.html
(check step number 7)

2009/1/17 Paul Cartwright <ale@pcartwright.com>:
> I am having a small problem with my system. I started a small web server, so I
> could share photos. nginx & gallery2 are working just fine, easy to setup and
> use! The problem is, I just rebooted, and I have to rerun the iptables
> command to open port 80 for my web server again. I see there is firestarter
> on my system but it isn't running, and I don't think I ever set it up. All I
> want is for my web port rule to start every time I boot, but I can't find
> anywhere in the system where iptables is saved, or where to put this one line
> rule so it starts every time.
> wiki.debian.org didn't have an iptables section, just shorewall.
> --
> Paul Cartwright
> Registered Linux user # 367800
> Registered Ubuntu User #12459
>
>
> --
> To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
>
>



--
Regards,

Umarzuki Mochlis
http://gameornot.net


--
To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
 
Old 01-17-2009, 03:24 AM
Jeff Soules
 
Default iptables/firestarter

>> on my system but it isn't running, and I don't think I ever set it up. All I
>> want is for my web port rule to start every time I boot, but I can't find
>> anywhere in the system where iptables is saved, or where to put this one line
>> rule so it starts every time.

http://www.debian-administration.org/articles/615 has more information
about this topic.

Personally, I do this:

Ensure that you have your firewall rules set up as you wish them.
Then, edit /etc/network/interfaces to add the following:

# Bring up firewall
pre-up iptables-restore < /etc/iptables.rules

# And save fw state on shutdown
post-down iptables-save -c > /etc/iptables.rules


However, people seem to be saying that this may have drawbacks, as if
you add a bad rule or otherwise negatively alter your ruleset, it
would get automatically saved. Since I make all edits to my iptables
rules in a shell script that I source when I want to change them, I'm
not too worried about that, but you can see several alternate
solutions from the link above.

Hope this helps!

On Fri, Jan 16, 2009 at 10:35 PM, Umarzuki Mochlis <umarzuki@gmail.com> wrote:
> Perhaps you can run
> # update-rc.d <your-desired-program>
>
> To make iptables start at boot-up for every runlevel. never tried this
> but i read from http://www.rexx.com/~dkuhlman/iptables_install.html
> (check step number 7)
>
> 2009/1/17 Paul Cartwright <ale@pcartwright.com>:
>> I am having a small problem with my system. I started a small web server, so I
>> could share photos. nginx & gallery2 are working just fine, easy to setup and
>> use! The problem is, I just rebooted, and I have to rerun the iptables
>> command to open port 80 for my web server again. I see there is firestarter
>> on my system but it isn't running, and I don't think I ever set it up. All I
>> want is for my web port rule to start every time I boot, but I can't find
>> anywhere in the system where iptables is saved, or where to put this one line
>> rule so it starts every time.
>> wiki.debian.org didn't have an iptables section, just shorewall.


--
To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
 
Old 01-17-2009, 11:05 AM
Paul Cartwright
 
Default iptables/firestarter

On Fri January 16 2009, Jeff Soules wrote:
> Personally, I do this:
>
> Ensure that you have your firewall rules set up as you wish them.
> Then, edit /etc/network/interfaces to add the following:
>
> # Bring up firewall
> pre-up iptables-restore < /etc/iptables.rules
>
> # And save fw state on shutdown
> post-down iptables-save -c > /etc/iptables.rules

a few people have mentioned this method, and it seems straight forward..
thanks, I set this up.. hopefully next year, when I reboot, it will update
oh, wait, I gotta add a replacement drive soon.. brand-new Seagate Barracuda
drive locked up and quit yesterday!@!!!@!!!

--
Paul Cartwright
Registered Linux user # 367800
Registered Ubuntu User #12459


--
To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
 

Thread Tools




All times are GMT. The time now is 06:57 AM.

VBulletin, Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.
Copyright 2007 - 2008, www.linux-archive.org