Adding a packet filter rule automatically.

I've got Snort successfully installed and running on my ASL 3.380 box. I've created a filter rule:
Eth0_interface--MySQL_port--DBase_machine--Allow.
It works, however... I get a few packet filter log entries for this traffic being blocked several times then it is allowed by my rule and works from then on. I would like to have an IPTABLES rule created automatically during boot to allow this traffic. Where would I enter the rule to have it load ASAP insted if loading when the front end packet filter rules do?

Parents

0 JimmyM over 22 years ago

Perhaps a better way of putting this. In what file does ASL keep its IPTABLES AUTO_OUTPUT rules entries. I'd like to add to it so that my Snort logging rule gets loaded as soon as possible.
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel

Reply

0 JimmyM over 22 years ago

Perhaps a better way of putting this. In what file does ASL keep its IPTABLES AUTO_OUTPUT rules entries. I'd like to add to it so that my Snort logging rule gets loaded as soon as possible.
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel

Children

0 ollion over 22 years ago in reply to JimmyM

Hi Jim,

touch /etc/rc.d/ipfilter.local
chmod 400 /etc/rc.d/ipfilter.local

enter your rules

got it from
http://docs.astaro.org/hacking/ipfilter.local

HTH
ollion

[size="1"][ 24 January 2003, 15:01: Message edited by: ollion ][/size]
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 JimmyM over 22 years ago in reply to ollion

Brilliant. I'll give this a try too.
Thanks.
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel