Iptables firewall does not start after reboot or fwconsole restart

@dcitelecom wrote:

We are using FreePBX Distro 10.13.66-16 with the responsive firewall turned off so we can use our own iptables rules. The iptables are saved and set to run on reboot with
service iptables save
chkconfig iptables on

However when we reboot the system or run fwconsole restart, our iptables config does NOT load. Instead we get the empty config listed below and have to start iptables manually with "service iptables start". Why is our config not loading? It seems it's loading the empty responsive firewall config instead.

[root@nABC ~]# iptables -L -v
Chain INPUT (policy ACCEPT 96 packets, 6440 bytes)
pkts bytes target prot opt in out source destination
0 0 fail2ban-FTP tcp -- any any anywhere anywhere multiport dports ftp
0 0 fail2ban-apache-auth tcp -- any any anywhere anywhere multiport dports http
96 6440 fail2ban-SIP all -- any any anywhere anywhere
96 6440 fail2ban-SIP all -- any any anywhere anywhere
0 0 fail2ban-BadBots tcp -- any any anywhere anywhere multiport dports http,https
0 0 fail2ban-SSH tcp -- any any anywhere anywhere multiport dports ssh
96 6440 fail2ban-recidive all -- any any anywhere anywhere

Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination

Chain OUTPUT (policy ACCEPT 88 packets, 8293 bytes)
pkts bytes target prot opt in out source destination

Chain fail2ban-BadBots (1 references)
pkts bytes target prot opt in out source destination
0 0 RETURN all -- any any anywhere anywhere

Chain fail2ban-FTP (1 references)
pkts bytes target prot opt in out source destination
0 0 RETURN all -- any any anywhere anywhere

Chain fail2ban-SIP (2 references)
pkts bytes target prot opt in out source destination
192 12880 RETURN all -- any any anywhere anywhere
0 0 RETURN all -- any any anywhere anywhere

Chain fail2ban-SSH (1 references)
pkts bytes target prot opt in out source destination
0 0 RETURN all -- any any anywhere anywhere

Chain fail2ban-apache-auth (1 references)
pkts bytes target prot opt in out source destination
0 0 RETURN all -- any any anywhere anywhere

Chain fail2ban-recidive (1 references)
pkts bytes target prot opt in out source destination

Posts: 12

Participants: 4

Read full topic