SSH hank attempts… bad?

Stuart Jansen sjansen at buscaluz.org
Wed Apr 12 10:30:59 MDT 2006


On Wed, 2006-04-12 at 10:27 -0600, Wade Preston Shearer wrote:
> > No, probably "service iptables stop". That will always flush all the
> > iptables and set every rule default to accept.
> 
> Do you then need to start it?

Depends. If you modified /etc/sysconfig/iptables, then yes you need to
service iptables start.

If you used /sbin/iptables, you need to service iptables save after
you're happy with the config.

iptables stop doesn't unload any kernel modules, it merely flushes all
rules. iptables start loads rules from /etc/sysconfig/iptables. iptables
save writes the current active rules to /etc/sysconfig/iptables.

-- 
Stuart Jansen              e-mail/jabber: sjansen at buscaluz.org
                           google talk:   stuart.jansen at gmail.com

"However beautiful the strategy, you should occasionally look at 
the results." -- Winston Churchill
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 191 bytes
Desc: This is a digitally signed message part
Url : http://plug.org/pipermail/plug/attachments/20060412/1c8e2ad6/attachment.bin 


More information about the PLUG mailing list