Home > iptables > SolusVM Slave - custom iptables

SolusVM Slave - custom iptables

April 14Hits:7

I want to add some custom lines to /etc/sysconfig/iptables.

I can do this but Solusvm flushes the rules using iptables-save every 5 minutes.

It does not always remove them and they survive a reboot but it seems twice daily it resets them? Most advise seems to be not to worry, but I don't want to have open ports to the node and want to secure ssh port etc.

What would the best way to do this be?

Run my own timed script to add them back just after SolusVM has run its ipt_update script?

thanks for reading.

Related Articles

  • SolusVM Slave - custom iptablesApril 14

    I want to add some custom lines to /etc/sysconfig/iptables. I can do this but Solusvm flushes the rules using iptables-save every 5 minutes. It does not always remove them and they survive a reboot but it seems twice daily it resets them? Most advise

  • Openstack Essex: how can I add custom iptables rulesFebruary 25

    I've got an openstack instance (all in one node) and want to redirect incoming traffic on some port from the host to one of the instance. Openstack Nova set up a whole bunch of iptables rules. How can I properly configure my box so that my custom rul

  • How To Install A Custom Iptables Firewall

    How To Install A Custom Iptables FirewallJuly 16

    Hi all I tried to follow the howto but I noticed that the file /etc/firewall/firewall.conf.iptables is missing end this file is needed by firewall.iptables daemon. Can anyone tell me where I can download this file or send here an example config file?

  • In which order are rules of custom iptables chains evaluated?

    In which order are rules of custom iptables chains evaluated?October 9

    I am fairly new to iptables. The picture below shows the order in which chains are evaluated based on my current understanding. If that impression is wrong please let me know. My question is where in the following diagramm is a custom chain placed wh

  • BROKEN HOWTO: How To Install A Custom Iptables FirewallJuly 8

    This how to needs more work as it fails to run. the how to states: Code: Edit this file(type in gedit first :)) /etc/init.d/firewall.iptables Enter in this code As root enter in this command chown root:root /etc/init.d/firewall.iptables chmod 700 /et

  • How to find what custom config is used by iptables?July 24

    I need to open the custom iptables config, and change old IP address to new. How I can find what custom config is used by iptables? --------------Solutions------------- iptables comes with the utilities which might be useful to update iptables config

  • How to start/stop iptables on Ubuntu?April 3

    How can I start/stop the iptables service on Ubuntu? I have tried service iptables stop but it is giving "unrecognized service". Why is it doing so? Is there any other method? --------------Solutions------------- I don't know about "Ubuntu&

  • Cannot modify iptables on CentOSSeptember 26

    My question: How to add a custom iptables rule to accept connection on a certain port? I'm trying to open port 3500 on my server but failed. I started by using this command: (From http://wiki.centos.org/HowTos/Network/IPTables) iptables -A INPUT -p t

  • iptable script to block Post request to a specific file October 2

    It seems that some script kiddie started attacking one of my servers by trying to fetch all sorts of URLs that may be related to Wordpress vulnerabilities. I don't even have WP installed on the server, and all these cause is a bunch of 404 errors. Si

  • Will 'yum' update will do COMMIT in iptables on update? October 10

    I've one RPM package which I need to update on production server with some customer iptables rules, and my previous version of the package have some sysconfig/iptables-custom rules inside. The new version of my package does not have these rules, so I

  • Using Custom Service Object In Firewall Builder

    Using Custom Service Object In Firewall BuilderJune 9

    Using Custom Service Object In Firewall Builder Author: [email protected] http://www.fwbuilder.org This article continues the series of articles on Fireall Builder, a graphical firewall configuration and management tool that supports many Open Source

  • iptables rule adviser script

    iptables rule adviser scriptJuly 3

    There is a server without any iptables defense: ACCEPT all.. There could be custom applications on this server. If we should need to harden this server (so deny all, and only let what is needed by the applications) with strict iptables rules, we have

  • iptables

    iptablesMay 3

    Hi all I think i have iptables worked out, got one problem every time i reboot, I lose the iptables that i created. I saved the files and then ran iptables -L to see my home made fire wall, I log in via another PC on my network and I'm able to log in

  • OpenWRT: iptables rules will be deleted automaticallyJune 5

    In my OpenWRT instance, I have added iptables rules in the Input filter table, but the problem is when I turn on my system I found that the rules are deleted. What can I do so that the rules are not delete automatically. --------------Solutions------

  • Do I need a return at the end of iptables chain?April 11

    This is probably an incredibly basic question, but maybe there's some nuance and maybe it's been hashed out ad inifinitum and I'm oblivious to it. I'm making a suite of custom iptables scripts that hang off the input and output chains. I'm going to p

  • Bastille - Open port to one IP (mysql)??August 10

    Hi, I need to configure a mysql replication where ISPconfig will be the master. Until now the mysql port (3306) was closed. I'm concerned by the security and I don't want this port opened for all but only one ip (mysql slave). How can I do this? At t

  • Securing a SuperMicro IPMI BMCJune 2

    I've recently acquired a SuperMicro X8DTU-F motherboard, which has a built-in BMC, which basically runs the IPMI system. It turns out to be a small Linux system running on an ARM processor. Unfortunately, it's running a boatload of software, much of

  • Combining two wireless home networks into one topographySeptember 14

    My current setup is this. We have two apartments Network A Computer A -> Wireless Router A <- Cable Modem A <- Comcast Internet Subscription A Network B Computer B -> Wireless Router B <- Cable Modem B <- Comcast Internet Subscription B

  • Set host firewall so VMs obtain dynamic IP from dnsmasqDecember 3

    Virtual machines (KVM/libvirt) fail to obtain a dynamic IP address from the libvirt-launched dnsmasq running on a CentOS host when the firewall is running. When I turn off the firewall (CSF), the virtual machine obtains an IP. For those who have enco

  • Forwarding ports to guests in libvirt / KVMAugust 13

    How can I forward ports on a server running libvirt/KVM to specified ports on VM's, when using NAT? For example, the host has a public IP of I want to forward port 80 to and port 22 to I assume I need to add iptables rules

Copyright (C) 2018 ceus-now.com, All Rights Reserved. webmaster#ceus-now.com 14 q. 0.512 s.