Lähettäjä: Lars Noodén Päiväys: Vastaanottaja: dng Aihe: [DNG] Recommended location for iptables rules
Where should we be commending the storage of iptables rules in Devuan
Jessie?
I notice that iptables-apply looks for rules in
/etc/network/iptables.up.rules while iptables-persist looks for rules in
/etc/iptables/rules.v4 instead. The former utility is installed by
default as part of the iptables package itself, the latter is not.
Neither file exists on a plain vanilla installation.
If one installs iptables-persistent, then iptables-apply has to be
manually pointed at the right file every time it is used. If
iptables-persistent is not used, then a simple script has to be manually
added to /etc/network/if-pre-up.d/ in order to enable iptables on start
up.
Because iptables-apply is there by default, I'm leaning a bit towards
recommending /etc/network/iptables.up.rules as the location over
/etc/iptables/rules.v4