[INFO] Firewall rules disappear after restarting iptables

Modified on: Thu, 23 Jan, 2020 at 1:55 PM

Business Automation Operations Automation

Symptoms

I have stopped and started iptables with these commands:

~# /etc/init.d/iptables stop

~# /etc/init.d/iptables start

Now I see that some rules have disappeared. What could be the reason?

Cause

If rules were added using /sbin/iptables utility, they were added to a chain in the memory and were not committed to the hard disk. Upon restart, those rules were flushed from the memory and not restored.

Resolution

In order to avoid losing rules during an iptables restart, you need to save them before the restart.

Method 1:

~# iptables-save > iptables_save.txt

If using this method, you will need to restore the rules after the restart:

~# iptables-restore < iptables_save.txt
Method 2:

~# /etc/init.d/iptables save
Saving firewall rules to /etc/sysconfig/iptables: [ OK ]

The above command saves the rules to the file system, and an iptables restart will not affect them.

RedHat: Saving IPTables Rules

CentOS: Saving IPTables Rules

Internal content

Did you find it helpful? Yes No

CloudBlue Technical Support