Thread: [Fwbuilder-discussion] Post-install script?
Brought to you by:
mikehorn
From: Robin B. <rob...@ro...> - 2006-02-14 11:56:23
|
Hi, I'm using fwbuilder to manage a firewall on a Fedora Core 4 box. After I update the firewall and install it I log on to the server and execute: iptables-save > /etc/sysconfig/iptables This ensures that the the rules are reloaded when the box is restarted. Is it possible to add a script that is run after the firewall has been remotely installed to do this automatically? Thanks, R. |
From: <va...@vk...> - 2006-02-14 16:43:56
|
On Feb 14, 2006, at 3:55 AM, Robin Bowes wrote: > Hi, > > I'm using fwbuilder to manage a firewall on a Fedora Core 4 box. > > After I update the firewall and install it I log on to the server and > execute: > > iptables-save > /etc/sysconfig/iptables > > This ensures that the the rules are reloaded when the box is > restarted. > > Is it possible to add a script that is run after the firewall has been > remotely installed to do this automatically? you can add this command to the epilog part of the script generated by fwbuilder (in firewall settings dialog, tab "Prolog/Epilog"), or you could use external installer script such as fwb_install and modify it accordingly. Please note though that firewall script generated by fwbuilder does some other things besides adding iptables rules, in particular, it configures virtual IP addresses on interfaces and handles addresses obtained dynamically. You lose this functionality if you save iptables config using iptables-save and restore it after reboot using iptables-restore. --vk |