On Tue, Nov 1, 2011 at 09:40, Thuo Wilson <lixton@gmail.com> wrote:

On 1 November 2011 09:08, Martin Chiteri <martin.chiteri@gmail.com> wrote:

@Wash, you can save your new rules in a script and let them be run
with the others scheduled for startup, for instance by placing them in
/etc/profile.

This I would do if a *iptables -s* does not save my newly created
(security) policies.

Hey Wash,

Am not a guru either but some pointers here;

What you say is possible if you for example;

Something is flushing your iptables on boot <eg. some commands may be placed here /etc/rc.local>
You didnt save your iptables rules <you could test by restarting the iptables b4 you reboot - service iptables restart>

The iptables-config file is modified not to save on reboot </etc/sysconfig/iptables-config>
You could also exec a simple command on CLI then <service iptables save>, then <reboot> - see if it saves.

@Thou - something is flushing my iptables on boot. That is what I need to find out. I have RTFMs and I am very sure I am saving correctly.
I am not competent with Linux security so this is rather baffling, yet I am not even so willing to learn that aspect of Linux.