Results 1 to 3 of 3

Thread: [12.1] iptables vs. yast-firewall

  1. #1

    Default [12.1] iptables vs. yast-firewall

    Hi,

    so far I had allowed certain ports via the yast firewall module.
    now I want to block these ports for certain countries via iptables.

    I assume/fear that every run of the (yast-)firewall module will overwrite my "manual" iptables settings.
    Is that true?
    If yes, how/where can I put my iptables-script so that it will be called after every run of the yast-firewall module?
    (I use systemV!! - how would a solution differ if I used systemd?)
    is there a more elegant solution?

    where would I put my iptables-script for being called after boot? (systemV or systemd) or would that be solved autmomatically be the above solution?

    thanx
    paul

  2. #2
    Join Date
    Sep 2010
    Location
    Poland
    Posts
    1,726

    Default Re: [12.1] iptables vs. yast-firewall

    Quote Originally Posted by suse_paul View Post
    Hi,

    so far I had allowed certain ports via the yast firewall module.
    now I want to block these ports for certain countries via iptables.

    I assume/fear that every run of the (yast-)firewall module will overwrite my "manual" iptables settings.
    Is that true?
    If yes, how/where can I put my iptables-script so that it will be called after every run of the yast-firewall module?
    (I use systemV!! - how would a solution differ if I used systemd?)
    is there a more elegant solution?

    where would I put my iptables-script for being called after boot? (systemV or systemd) or would that be solved autmomatically be the above solution?

    thanx
    paul
    I'm bot sure if it still works the same way but you may want to look at this :
    http://forums.opensuse.org/archives/...ml#post1793293

    Either way you are correct in thinking that the rules will be overwritten every time. If you use the custom rules explained above I believe this should work regardless of whether you use systemd or systemV. I have never tried this myself though.
    Best regards,
    Greg
    Box: Windows 7 / Windows XP | Intel Dual-Core E5200 | ATI Radeon HD4850 | 4GB RAM
    Lap: openSUSE 12.3 / Windows 7 | Intel U7300 | KDE | Intel GMA 4500 | Asus UL80A | 3GB RAM

  3. #3
    Join Date
    Feb 2009
    Location
    Spain
    Posts
    21,871

    Default Re: [12.1] iptables vs. yast-firewall

    On 2012-11-19 13:26, suse paul wrote:
    > where would I put my iptables-script for being called after boot?


    Code:
    /etc/sysconfig/scripts/SuSEfirewall2-custom

    --
    Cheers / Saludos,

    Carlos E. R.
    (from 11.4 x86_64 "Celadon" (Minas Tirith))

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •