Gentoo Archives: gentoo-amd64

From: Craig Webster <craig@××××××.net>
To: gentoo-amd64@l.g.o
Subject: Re: [gentoo-amd64] firewall
Date: Fri, 23 Dec 2005 14:13:50
Message-Id: 6A4B7886-6176-4FF9-93E2-C40CC9B96CB7@xeriom.net
In Reply to: Re: [gentoo-amd64] firewall by Gavin Seddon
On 23 Dec 2005, at 14:00, Gavin Seddon wrote:
> Hi, > I to have such a script that blocks ip's after 5 'opportunist' > attempts. > See below. How do I rc-update this to default? > Cheers.
I'd dump the current rules to a file (something like /var/lib/ iptables/rules) then have that read in from /etc/conf.d/local.start. You can also have a script in /etc/conf.d/local.stop which will save the rules to a file. The advantage of this approach is that if you change rules on-the-fly the firewall rules will be preserved across restarts. If you want to have the firewall start as a separate process to local then try copying an existing init script and modifying it. Yours, Craig -- Craig Webster | t: +44 (0)131 516 8595 | e: craig@××××××.net Xeriom.NET | f: +44 (0)709 287 1902 | w: http://xeriom.net -- gentoo-amd64@g.o mailing list