@dcitelecom wrote:
We are using FreePBX Distro 10.13.66-16 with the responsive firewall turned off so we can use our own iptables rules. The iptables are saved and set to run on reboot with
service iptables save
chkconfig iptables onHowever when we reboot the system or run fwconsole restart, our iptables config does NOT load. Instead we get the empty config listed below and have to start iptables manually with "service iptables start". Why is our config not loading? It seems it's loading the empty responsive firewall config instead.
[root@nABC ~]# iptables -L -v
Chain INPUT (policy ACCEPT 96 packets, 6440 bytes)
pkts bytes target prot opt in out source destination
0 0 fail2ban-FTP tcp -- any any anywhere anywhere multiport dports ftp
0 0 fail2ban-apache-auth tcp -- any any anywhere anywhere multiport dports http
96 6440 fail2ban-SIP all -- any any anywhere anywhere
96 6440 fail2ban-SIP all -- any any anywhere anywhere
0 0 fail2ban-BadBots tcp -- any any anywhere anywhere multiport dports http,https
0 0 fail2ban-SSH tcp -- any any anywhere anywhere multiport dports ssh
96 6440 fail2ban-recidive all -- any any anywhere anywhereChain FORWARD (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destinationChain OUTPUT (policy ACCEPT 88 packets, 8293 bytes)
pkts bytes target prot opt in out source destinationChain fail2ban-BadBots (1 references)
pkts bytes target prot opt in out source destination
0 0 RETURN all -- any any anywhere anywhereChain fail2ban-FTP (1 references)
pkts bytes target prot opt in out source destination
0 0 RETURN all -- any any anywhere anywhereChain fail2ban-SIP (2 references)
pkts bytes target prot opt in out source destination
192 12880 RETURN all -- any any anywhere anywhere
0 0 RETURN all -- any any anywhere anywhereChain fail2ban-SSH (1 references)
pkts bytes target prot opt in out source destination
0 0 RETURN all -- any any anywhere anywhereChain fail2ban-apache-auth (1 references)
pkts bytes target prot opt in out source destination
0 0 RETURN all -- any any anywhere anywhereChain fail2ban-recidive (1 references)
pkts bytes target prot opt in out source destination
Posts: 12
Participants: 4