00:55.28 | *** join/#gllug w1bble (~Jamie@unaffiliated/w1bble) |
08:54.37 | *** join/#gllug ess_tee_u (~NULL@2001:8b0:908:6a91:8e89:a5ff:fe52:e41d) |
09:10.07 | *** join/#gllug Elleo (~Elleo@libre.fm/hacker/elleo) |
09:35.43 | *** join/#gllug Armand (~martin@2a01:9cc0:40:6:c910:7a2a:1daa:c598) |
12:00.15 | *** join/#gllug dick_turpin (~peter@host217-34-163-30.in-addr.btopenworld.com) |
12:05.12 | dick_turpin | morsing: It's very sunny here today |
12:08.13 | *** join/#gllug jpds (~jpds@ubuntu/member/jpds) |
12:23.54 | morsing | Same here |
12:48.59 | Armand | Looks rather nice here, but I'm still glad to be leaving tomorrow. :P |
12:56.39 | dick_turpin | See wethrin you can fook right off! morsing does speak to me. :-P |
12:57.28 | wethrin | Yeah, but I don't! |
13:12.40 | dick_turpin | wethrin: That's because you're a snob. :-p |
13:12.56 | dick_turpin | And a liar coz you just did :-P |
13:13.30 | wethrin | Dammit |
13:17.22 | dick_turpin | Ha! I claim my £5 Luncheon voucher |
13:29.37 | *** join/#gllug gr0undhog (~don@host86-152-197-163.range86-152.btcentralplus.com) |
13:31.04 | gr0undhog | :morsing! |
13:40.40 | gr0undhog | Hi Peoples - I've been having a brain re-orienting session trying to finalise a firewall, a la Debian. I'm unsure of the "iptables-save" protocol (as in a howto by Chris Mortimore on the Debian forum). I have the rules set up and showing in my root terminal. I'm aware that the "save" mentioned sends it to some sort of system memory from which the rules can be restored, but I want to save them to a self-created folder/director |
14:43.46 | yaMatt | is this ufw? |
14:44.08 | yaMatt | if it's iptables rules I'm guessing not |
15:34.13 | morsing | gr0undhog: They save into /etc/firewall |
15:38.08 | *** part/#gllug dick_turpin (~peter@host217-34-163-30.in-addr.btopenworld.com) |
19:05.44 | *** join/#gllug ChoHag (~mking@91.103.132.227) |
19:20.56 | *** join/#gllug ChoHag (~mking@91.103.132.227) |
22:12.31 | ChoHag | gr0undhog: iptables-save will print the ruleset which is active to stdout. iptables-restore will read a ruleset from stdin and activate it. |
22:12.43 | *** join/#gllug gregoriosw_vp (~gregorios@176.126.244.125) |
22:13.20 | ChoHag | Something in the startup sequence will run iptables-restore (if it doesn't have some magic firewall creation application instead). I've no idea where it'll look for its input file. |
22:14.27 | ChoHag | I don't think stock Debian has a startup firewall script. I just read from a heredoc in /etc/rc.local |
22:14.58 | ChoHag | iptables-restore <<EOF4 |
22:15.04 | ChoHag | <the output from a previous iptables-save> |
22:15.05 | ChoHag | EOF4 |
22:15.55 | ChoHag | rc.local is always last in the startup sequence and iptables-restore will blat away anything any previous startup script has done. |
22:16.24 | ChoHag | The only thing left to possible trample on it is the Network Mangler. |
22:16.29 | ChoHag | possibly |