[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [suse-security] iptables SuSEfirewall2

> I know that SuSefirewall uses iptables but for example I want to make an
entry for
> iptables -I INPUT -s -j DROP
> Basically I want to drop any connections from the
> network coming to a sendmail server.
> With the Yast and SuSefirewall scripts managing the iptables
> where will I put my entry in and how do I make iptables read the new entry?
> I tried issuing the above from the command line but I don't know how
Suse likes to restart to read the new entry.
> Help would be appreciated.

If you want to load custom iptables rules into SuSEfirewall2 uncomment the


line in /etc/sysconfig/SuSEfirewall2 and then put your iptables rules into
the appropriate hook in /etc/sysconfig/scripts/SuSEfirewall2-custom.

However, It's possible you could do something like:


to do what you want in SuSEfirewall2 itself, I havn't tested that though,
read the comments in /etc/sysconfig/SuSEfirewall2

Benjamin Weber

Check the headers for your unsubscription address
For additional commands, e-mail: suse-security-help@xxxxxxxx
Security-related bug reports go to security@xxxxxxx, not here