Load ipset configuration on boot ?

Comments 2

Has anybody found a nice solution to loading ipset configuration at boot? Seems strange that RHEL6.3 includes only the ipset command line utility, and not any documentation for how to create sets that will work after a boot..

Here's one suggested initscript: https://bugzilla.redhat.com/show_bug.cgi?id=888571

Started 2013-03-04T15:04:06+00:00 by

janfrode

Community Leader Guru 1340 points

Responses

Red Hat Guru 7257 points

6 March 2013 12:56 AM

Jamie Bainbridge

I think you might have answered your own question. Mandriva and Gentoo are also doing this with an initscript.

Another way I could think would be to manage your rules with ipset save then run ipset restore as part of /sbin/ifup-local.

ja Guru 1340 points

6 March 2013 8:36 AM

janfrode

Community Leader

Unfortunately ifup-local is too late. It needs to happen before the iptables initscript, since loading iptables rules that refer to sets will fail unless the sets have already been created. I have a support ticket opened about this, will probably make it an RFE eventually..

Thanks for pointing at Mandriva and Gentoo, I'll check how they are doing it..

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.

Log in to Your Red Hat Account

Red Hat Account

Customer Portal

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

JBoss Development and Management

JBoss Integration and Automation

Mobile

Services

Tools

Red Hat Product Security Center

Security Updates

Resources

Customer Portal Community

Customer Events

Stories

Responses