| 1 |
On Friday 29 Mar 2013 19:03:57 Jarry wrote: |
| 2 |
> On 29-Mar-13 19:43, Mick wrote: |
| 3 |
> > On Friday 29 Mar 2013 18:25:11 Jarry wrote: |
| 4 |
> >> Hi Gentoo-users, |
| 5 |
> >> |
| 6 |
> >> I noticed one thing on my server: during boot-up no message |
| 7 |
> >> about firewall being started is printed on console. I always |
| 8 |
> >> have to check manually if iptables-rules have been loaded. |
| 9 |
> >> Strange thing, when doing shutdown, I see messages I expect: |
| 10 |
> >> |
| 11 |
> >> * Saving iptables state ... [ ok ] |
| 12 |
> >> * Stopping firewall ... [ ok ] |
| 13 |
> >> |
| 14 |
> >> I checked also /etc/init.d/iptables and I think it should |
| 15 |
> >> show some messages at start: |
| 16 |
> >> |
| 17 |
> >> start() { |
| 18 |
> >> checkconfig || return 1 |
| 19 |
> >> ebegin "Loading ${iptables_name} state and starting firewall" |
| 20 |
> >> ${iptables_bin}-restore ${SAVE_RESTORE_OPTIONS} < "${iptables_save}" |
| 21 |
> >> eend $? |
| 22 |
> >> } |
| 23 |
> >> |
| 24 |
> >> Can someone explain to me why this message is not printed? |
| 25 |
> > |
| 26 |
> > Do you have some other script starting your iptables, rather than the |
| 27 |
> > vanilla /etc/init.d/iptables? |
| 28 |
> |
| 29 |
> No. |
| 30 |
> |
| 31 |
> > Does '/etc/init.d/iptables status' show that it is running? |
| 32 |
> |
| 33 |
> * status: started |
| 34 |
> |
| 35 |
> I recorded screen with my video-camera to be sure I did not miss |
| 36 |
> some message. But I found no trace about iptables being started... |
| 37 |
|
| 38 |
I have not set rc_logger in /etc/conf.d/iptables to know if it would make a |
| 39 |
difference and can confirm that I can clearly see it on my boxen at boot time: |
| 40 |
|
| 41 |
* Loading iptables state and starting firewall ... [ ok ] |
| 42 |
|
| 43 |
|
| 44 |
Another thing to check is that it is in the default level: |
| 45 |
|
| 46 |
$ eselect rc list | grep iptables |
| 47 |
iptables default |
| 48 |
|
| 49 |
I'm not sure if it would show up, or the message be suppressed if you add it |
| 50 |
to the boot level. |
| 51 |
|
| 52 |
-- |
| 53 |
Regards, |
| 54 |
Mick |
Archives