?

Log in

No account? Create an account
Lord Yupa

February 2010

S M T W T F S
 123456
78910111213
14151617181920
21222324252627
28      
Powered by LiveJournal.com
Danger Mouse

iptables, you bastard!

Okay, iptables/netfilter has got me really annoyed.

I've spent the past few days fine-tuning my firewall rules. Slowly, but surely, I'd just gotten them *just right*.

And now they're gone. Bizarrely, strangely, unexplainably, gone.

nexus:~$ sudo iptables -L
Chain INPUT (policy ACCEPT)
target prot opt source destination

Chain FORWARD (policy ACCEPT)
target prot opt source destination

Chain OUTPUT (policy ACCEPT)
target prot opt source destination

What the hell is going on?

(No, I hadn't saved them, yet. I wanted to make sure everything was perfect, and then I was going to write it all into a script. Why not do that first? Bleh, what did I have to worry about? My firewall's average uptime is 200+ days, and it's never lost it's firewall rules like this, before.)

And what's even more bizarre, is that at least some of them are still working. My NAT rules are still working. I know this, because I'm currently accessing the Internet from a machine on the LAN, *behind* the firewall that suddenly seems to have lost it's rules.

However, some of them *aren't* working. And it's leaving me very, very confused.

Comments

D'oh!

Ooops. I was so annoyed, I forgot to check that specifically.

That one still has one rule:
Chain POSTROUTING (policy ACCEPT)
target prot opt source destination
MASQUERADE all -- anywhere anywhere

But I'm still really confused. Where the hell did my iptables rules go? And why?

It just happened to me again last night, but I still can't figure out what is causing them to get cleared. I haven't made any software/configuration changes to anything that should be affecting the firewall rules. . .

Grr.