[BlueOnyx:16551] Re: Adding an ACCEPT rule for a static IP in the firewall

[Jason Humphrey]

Hi Richard,

For once I can answer a question rather than ask one!

The iptables rules are regenerated by cron. You can change the rules in the script /etc/cron.hourly/log_traffic around line 50

Kind Regards,

Jason Humphrey

Please consider your environmental responsibility.
Before printing this e-mail message, ask yourself whether you really need a hard copy.

DISCLAIMER
Confidentiality: This e-mail and its attachments are intended for the above named only and may be confidential. If they have come to you in error you must take no action based on them, nor must you copy or show them to anyone; please reply to this e-mail and highlight the error.

From: blueonyx-bounces at mail.blueonyx.it [mailto:blueonyx-bounces at mail.blueonyx.it] On Behalf Of Richard Morgan :: Morgan Web
Sent: 25 November 2014 09:59
To: 'BlueOnyx General Mailing List'
Subject: [BlueOnyx:16550] Adding an ACCEPT rule for a static IP in the firewall

Hi, we use the APF and BFD package and the BX keeps blocking a Windows box.  I can remove the offending DROP rules, no problem and I thought I could add a rule with this:

iptables -I INPUT -s nnn.nnn.nnn.nnn/27 -j ACCEPT
service iptables save

This is listed in the rules when I run iptables --list --line-numbers -n (grep IP, of course).

However within about 24 hours the rules are gone and the box is blocking the Windows server again. So, please could someone explain how I can save the iptables config so it they are permenant?

Many thanks, Richard

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.blueonyx.it/pipermail/blueonyx/attachments/20141125/81954fe4/attachment.html>