firewall (service)

At the moment you have a choice to use the default shurdix’ firewall settings as a starting point. If you want to do this, put firewall=1 into /etc/sysconfig/services. The alternative is to start from scratch (which is the default).

If you want to use your own firewall rules, you can put them into /etc/sysconfig/iptables. If firewall is set to 1, the contents of /etc/sysconfig/iptables will be added to the default firewall settings. If firewall is not set, the contents of /etc/sysconfig/iptables will be loaded while flushing any previous rules, in this case you have to put all your rules into this file. The syntax is identical to the format of iptables-save.

This will save the current rules into /etc/sysconfig/iptables. Be careful not to mix this with firewall=1.

If you are using the default firewall settings and want to allow administration from a certain IP (say 1.2.3.4), put the following into /etc/sysconfig/iptables:

*filter
-A admin -s 1.2.3.4 -g acct
COMMIT

If you restart firewall ( service firewall restart ) and are using traffic control, you have to restart traffic control too because IMQ will be flushed and incoming bandwidth won’t be regulated.