AnsweredAssumed Answered

Default iptables behaviour

Question asked by Belialcouk on Oct 12, 2015
Latest reply on Oct 12, 2015 by MichielHelder

I'm running a 8.0 version of the Gateway, and simply want to understand the default behaviour of the iptables.

 

I ask only because my 8.0 instance has been running for about 1.5 years without being rebooted, and I can see that /etc/sysconfig/iptables has a date stamp of before I deployed the instance (2013). This worries me that if I were to reboot the rules that permit some of my policies to interact over 8443 and 6443 (for example) would be blocked by the firewall rule as they were not set to persist. Can someone give me just a little confidence that these iptables rules have been "iptables-save"d so that they persist a reboot.

 

(We have just seen a very strange scenario where these rules did no appear to persist, but are unsure on the forensics of who did what, and understanding the default behaviour will allow us to account for it in the future. I appreciate from the iptables comments that this is a machine updated configuration.)

 

Thanks in advance

 

Jonathan

Outcomes