so far I had allowed certain ports via the yast firewall module.
now I want to block these ports for certain countries via iptables.
I assume/fear that every run of the (yast-)firewall module will overwrite my “manual” iptables settings.
Is that true?
If yes, how/where can I put my iptables-script so that it will be called after every run of the yast-firewall module?
(I use systemV!! - how would a solution differ if I used systemd?)
is there a more elegant solution?
where would I put my iptables-script for being called after boot? (systemV or systemd) or would that be solved autmomatically be the above solution?
Either way you are correct in thinking that the rules will be overwritten every time. If you use the custom rules explained above I believe this should work regardless of whether you use systemd or systemV. I have never tried this myself though.