Red Hat ENTERPRISE LINUX 5 - DEPLOYMENT Deployment Manual page 749
Hide thumbs
Also See for ENTERPRISE LINUX 5 - DEPLOYMENT:
- Manual (402 pages) ,
- Configuration (86 pages) ,
- Overview (68 pages)
Table of Contents
Advertisement
Tip
To use the same initscript commands to control netfilter for IPv6, substitute ip6tables
for iptables in the /sbin/service commands listed in this section. For more
information about IPv6 and netfilter, refer to
43.9.5.1. IPTables Control Scripts Configuration File
The behavior of the iptables initscripts is controlled by the /etc/sysconfig/iptables-config
configuration file. The following is a list of directives contained in this file:
• IPTABLES_MODULES — Specifies a space-separated list of additional iptables modules to load
when a firewall is activated. These can include connection tracking and NAT helpers.
• IPTABLES_MODULES_UNLOAD — Unloads modules on restart and stop. This directive accepts the
following values:
• yes — The default value. This option must be set to achieve a correct state for a firewall restart or
stop.
• no — This option should only be set if there are problems unloading the netfilter modules.
• IPTABLES_SAVE_ON_STOP — Saves current firewall rules to /etc/sysconfig/iptables when
the firewall is stopped. This directive accepts the following values:
• yes — Saves existing rules to /etc/sysconfig/iptables when the firewall is stopped,
moving the previous version to the /etc/sysconfig/iptables.save file.
• no — The default value. Does not save existing rules when the firewall is stopped.
• IPTABLES_SAVE_ON_RESTART — Saves current firewall rules when the firewall is restarted. This
directive accepts the following values:
• yes — Saves existing rules to /etc/sysconfig/iptables when the firewall is restarted,
moving the previous version to the /etc/sysconfig/iptables.save file.
• no — The default value. Does not save existing rules when the firewall is restarted.
• IPTABLES_SAVE_COUNTER — Saves and restores all packet and byte counters in all chains and
rules. This directive accepts the following values:
• yes — Saves the counter values.
• no — The default value. Does not save the counter values.
• IPTABLES_STATUS_NUMERIC — Outputs IP addresses in numeric form instead of domain or
hostnames. This directive accepts the following values:
• yes — The default value. Returns only IP addresses within a status output.
• no — Returns domain or hostnames within a status output.
IPTables Control Scripts
Section 43.9.6, "IPTables and
IPv6".
723
Advertisement
Table of Contents
Related Manuals for Red Hat ENTERPRISE LINUX 5 - DEPLOYMENT
Related Products for Red Hat ENTERPRISE LINUX 5 - DEPLOYMENT
- Red Hat CLUSTER FOR ENTERPRISE LINUX 5.0
- Red Hat CLUSTER SUITE FOR ENTERPRISE LINUX 5.1
- Red Hat ENTERPRISE LINUX 5 - DM MULTIPATH
- Red Hat ENTERPRISE LINUX 5.1 DM MULTIPATH
- Red Hat ENTERPRISE LINUX 5.1 - LVM ADMINISTRATION
- Red Hat ENTERPRISE LINUX 5.1 - LINUX ORACLE
- Red Hat ENTERPRISE LINUX 5.3 - RELEASE MANIFEST
- Red Hat ENTERPRISE LINUX 5.5 - S 2010
- Red Hat CLUSTER SUITE FOR ENTERPRISE LINUX 5.2
- Red Hat CLUSTER SUITE FOR ENTERPRISE LINUX 4.5
- Red Hat CLUSTER SUITE FOR ENTERPRISE LINUX 4.7
- Red Hat ENTERPRISE LINUX 3 - SECURITY GUIDE
- Red Hat ENTERPRISE LINUX 3 - USING BINUTILS
- Red Hat ENTERPRISE LINUX 3 - STEP BY STEP GUIDE
- Red Hat ENTERPRISE LINUX 4 - DM MULTIPATH
- Red Hat ENTERPRISE LINUX 4.5.0 -
Need help?
Do you have a question about the ENTERPRISE LINUX 5 - DEPLOYMENT and is the answer not in the manual?
Questions and answers