On Jo, 26 apr 12, 22:38:25, Joe wrote: > > The usual way to organise iptables rules is to have a script that runs > as part of the boot sequence, usually also checking for the correct > modules, starting IP forwarding, etc. It isn't a workaround to run it > from an rc, how else do you think things are started on boot? If you > want something that looks like a daemon, it's not too hard to make a > start-stop script that will load and flush the iptables rules, check > which ruleset if any is currently running and generally work as a > pseudo-service. It's not something that Debian supplies, as a lot of > people prefer to use firewall applications rather than deal with raw > iptables rules.
Unless you consider 'iptables-persistent', which is as close as it can get to a "Debian supplied" firewall (the versioning indicates it is a Debian "native" package). Kind regards, Andrei -- Offtopic discussions among Debian users and developers: http://lists.alioth.debian.org/mailman/listinfo/d-community-offtopic
signature.asc
Description: Digital signature
