[lug] restricting internet access
qqq1one @yahoo.com
qqq1one at yahoo.com
Mon Mar 14 08:21:04 MST 2005
/etc/sysconfig/iptables is the file that I am manually editing and that
redhat-config-securitylevel is overwriting. I'm looking for the config
file that redhat-config-securitylevel is using to overwrite
/etc/sysconfig/iptables. It must be a separate file, since the tool
remembers its previous settings, regardless of what I put in
/etc/sysconfig/iptables.
--- Lee Woodworth <blug-mail at duboulder.com> wrote:
> qqq1one @yahoo.com wrote:
>
> ...............
>
> > OK, this seems to do what I need. I'm not completely up to speed
> on
> > editing the iptables file, but I gave this a try and it worked (the
> > restart script complained about "DENY" though, so I changed it to
> > "REJECT" like some of the other rules that were already in the
> > config file - then it worked).
> >
> > I think I've got one more step to go though. When I run
> > redhat-config-securitylevel, it overwrites the changes I make to
> the
> > iptables file. It must be getting it's rules from some other file,
> but
> > I can't find it to go modify it. Anybody know where it lives?
>
> Look in the /etc/sysconfig directory. I think there will be a file
> named iptables (its been a while since I used Fedora/RH, so YMMV).
> _______________________________________________
> Web Page: http://lug.boulder.co.us
> Mailing List: http://lists.lug.boulder.co.us/mailman/listinfo/lug
> Join us on IRC: lug.boulder.co.us port=6667 channel=#colug
>
__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
More information about the LUG
mailing list