firehol icon indicating copy to clipboard operation
firehol copied to clipboard
verified publisher icon firehol

setting IPTABLES_CMD variable makes firehol complain about using iptables

Open Mrten opened this issue 6 years ago • 2 comments

overriding IPTABLES_CMD in firehol.conf for fail2ban integration:

#https://github.com/firehol/firehol/wiki/fail2ban
IPTABLES_CMD="/sbin/iptables -w"

makes firehol complain on activation:

FireHOL: Saving active firewall to a temporary file...  OK
FireHOL: Processing file '/etc/firehol/firehol.conf'...

ERROR:
/etc/firehol/firehol.conf contains /sbin/iptables or /sbin/ip6tables statements.

Replace these statements iptables or ip6tables respectively,
without a path, so that FireHOL can execute these commands at
firewall activation.

Pretty much unavoidable, I think.

Mrten avatar Nov 06 '19 14:11 Mrten

IPTABLES_CMD="/sbin""/iptables -w" works, though.

Mrten avatar Nov 06 '19 14:11 Mrten

Interesting, when I used: IPTABLES_CMD="/sbin/iptables -w" as highlighted in the documentation, I got the below error.

FireHOL: Saving active firewall to a temporary file...  OK
FireHOL: Processing file '/etc/firehol/firehol.conf'...

ERROR:
/etc/firehol/firehol.conf contains /sbin/iptables or /sbin/ip6tables statements.

Replace these statements iptables or ip6tables respectively,
without a path, so that FireHOL can execute these commands at
firewall activation.

IPTABLES_CMD="/sbin""/iptables -w" worked fine!

jessicana avatar Jan 02 '22 03:01 jessicana