kadischi post failed -- Reposted here -- iptables always started no matter what
On Fri, Aug 26, 2011 at 5:14 PM, Phil Meyer <pmeyer@themeyerfarm.com> wrote:
Please tolerate this post intended for the livecd-creator list. *They
are bouncing me now days. *Maybe its time I changed deodorant? *I dunno ...
I am desperate!
---
livecd-tools-15.7-1.fc15.x86_64
Kickstarts all contain:
firewall --disabled
selinux --disabled
I even went as far as this:
%packages
---
[stuff deleted]
---
-system-config-firewall*
and
%post
---
[stuff deleted]
---
/sbin/chkconfig iptables off
/sbin/chkconfig ip6tables off
echo '#' > /etc/sysconfig/iptables
echo '#' > /etc/sysconfig/ip6tables
echo '#' > /etc/sysconfig/iptables-config
echo '#' > /etc/sysconfig/ip6tables-config
echo "#
--disabled" > /etc/sysconfig/system-config-firewall
%end
Could you use service iptables stop and service ip6tables stop ?
You could also use chkconfig to deactivate the firewalls*--aneiros
What happens is that /etc/sysconfig/iptables, /etc/sysconfig/iptables,
and /etc/sysconfig/system-config-firewall ALWAYS get recreated AFTER
%post runs!
That causes the iptables kernel modules to load, and filtering started,
even though iptables is actually configured for off and does not start.
What is doing that? *I cannot find it.
Any help is appreciated.
Thanks!
--
users mailing list
users@lists.fedoraproject.org
To unsubscribe or change subscription options:
https://admin.fedoraproject.org/mailman/listinfo/users
Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
--
J. E. AneirosGNU/Linux User #190716 en http://counter.li.orgperl -e '$_=pack(c5,0105,0107,0123,0132,(1<<3)+2);y[A-Z][N-ZA-M];print;'
PK fingerprint: 5179 917E 5B34 F073 E11A *AFB3 4CB3 5301 4A80 F674
--
users mailing list
users@lists.fedoraproject.org
To unsubscribe or change subscription options:
https://admin.fedoraproject.org/mailman/listinfo/users
Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
|
