Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 136118 - split iptables rules-save
Summary: split iptables rules-save
Status: RESOLVED WORKSFORME
Alias: None
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: High enhancement (vote)
Assignee: Gentoo's Team for Core System packages
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2006-06-08 14:45 UTC by Sergio Bevilacqua
Modified: 2011-10-30 22:38 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Sergio Bevilacqua 2006-06-08 14:45:39 UTC 
i suggest to split iptables rules-save in four separate rulesets: one for every chain.

/var/lib/iptables/sules-save -> /var/lib/iptables/{filter,mangle,nat,raw}

this can simplify the maintenance on wide firewalls
Comment 1 SpanKY gentoo-dev 2006-06-08 22:10:50 UTC 
hardcoding the chains is ugly

post a patch to dynamically save/restore all the chains and we can talk