[BlueOnyx:22119] Re: What can I do to keep my iptables configuration from being wiped out
Jim Scott
jscott at infoconex.com
Sat May 26 19:46:21 -05 2018
What happens when the next patch comes out that updates log_traffic? Can we
get something added so that we can configure our boxes to not be affected by
future upgrades?
if[ -d "/etc/apf/donotmodify"]; then
exit
Then your logic for apf does not change and those that are interested in
setting up their own iptables rules have a way of avoiding them being
overwritten?
Or perhaps a UI checkbox that your process checks to determine if it should
maintain the changes?
I do not recall which other processes have this same issue but I know it
exists in other cases as well.
Jim
-----Original Message-----
From: Michael Stauber
Sent: Wednesday, May 23, 2018 2:07 PM
To: blueonyx at mail.blueonyx.it
Subject: [BlueOnyx:22103] Re: What can I do to keep my iptables
configuration from being wiped out
Hi Jim,
> Not sure if something changed but finding my iptables that I thought was
> in place is getting wiped out and replaced with default entries. I found
> a few threads and though I could create /etc/apf to prevent it from
> happening but instead that then clears out iptables entirely. I could
> it looks like remove /etc/cron.hourly/log_traffic it looks like to keep
> it from happening but wondering if I am missing something?
>
> I customize my iptables. Run service iptables save which updated my
> iptables file. Reboot and it is cleared.
Right. Please either delete /etc/cron.hourly/log_traffic or edit it and
find this line:
if [ -d "/etc/apf" ];then
Right under it put an exit. So that it would look like this:
if [ -d "/etc/apf" ];then
exit
That will do.
--
With best regards
Michael Stauber
_______________________________________________
Blueonyx mailing list
Blueonyx at mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx
More information about the Blueonyx
mailing list