Froxlor (0.10.22-1) is running nicely on my server (Debian 10 Buster).
But now I plan to install a service on this public server, which needs a few ports more opened in iptables.
I am not sure how to create some rules that do not conflict with froxlor? What is the recommended way to install a few persistent rules, that do not disturb froxlor?
Status:
iptables is running and is showing some rules, example:
I find these active rules persistent in /etc/iptables/rules.v4
[code]
# Generated by xtables-save v1.8.2 on Mon Feb 10 20:44:30 2020
*filter
...
-A INPUT -p tcp -m tcp --dport 80 -j ACCEPT
-A INPUT -p tcp -m tcp --dport 443 -j ACCEPT
...
# Completed on Mon Feb 10 20:44:30 2020
[/code]
As far as I've seen these rules are loaded at boottime by systemd's netfilter-persistent.service.
Installed Debian packages:
[code]
ii iptables 1.8.2-4 amd64 administration tools for packet filtering and NAT
ii iptables-persistent 1.0.11 all boot-time loader for netfilter rules, iptables plugin
ii netfilter-persistent 1.0.11 all boot-time loader for netfilter configuration
[/code]
Has Froxlor generated the /etc/iptables/rules.v4?
How can I add a few more rules to rules.v4? For example allowing incoming ports 10000/udp and 5349/tcp?
Question
Leapfrog
Froxlor (0.10.22-1) is running nicely on my server (Debian 10 Buster).
But now I plan to install a service on this public server, which needs a few ports more opened in iptables.
I am not sure how to create some rules that do not conflict with froxlor? What is the recommended way to install a few persistent rules, that do not disturb froxlor?
Status:
iptables is running and is showing some rules, example:
[code]
# iptables -nvL
...
152 7784 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:80
513 25024 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:443
...
[/code]
I find these active rules persistent in /etc/iptables/rules.v4
[code]
# Generated by xtables-save v1.8.2 on Mon Feb 10 20:44:30 2020
*filter
...
-A INPUT -p tcp -m tcp --dport 80 -j ACCEPT
-A INPUT -p tcp -m tcp --dport 443 -j ACCEPT
...
# Completed on Mon Feb 10 20:44:30 2020
[/code]
As far as I've seen these rules are loaded at boottime by systemd's netfilter-persistent.service.
Installed Debian packages:
[code]
ii iptables 1.8.2-4 amd64 administration tools for packet filtering and NAT
ii iptables-persistent 1.0.11 all boot-time loader for netfilter rules, iptables plugin
ii netfilter-persistent 1.0.11 all boot-time loader for netfilter configuration
[/code]
Has Froxlor generated the /etc/iptables/rules.v4?
How can I add a few more rules to rules.v4? For example allowing incoming ports 10000/udp and 5349/tcp?
Kind regards
Link to comment
Share on other sites
5 answers to this question
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now