logo
Free, unlimited AI code reviews that run on commit
git-lrc git-lrc GitHub Install Now We'd appreciate a star git-lrc - Free, unlimited AI code reviews that run on commit | Product Hunt git-lrc - Free, unlimited AI code reviews that run on commit | Product Hunt

iptables-apply — a safer way to update iptables remotely

Contents

Description

       iptables-apply  will  try to apply a new rulesfile (as output by iptables-save, read by iptables-restore)
       or run a command to configure iptables and then prompt the user whether the changes are okay. If the  new
       iptables  rules  cut  the existing connection, the user will not be able to answer affirmatively. In this
       case, the script rolls back to the previous working iptables rules after the timeout expires.

       Successfully applied rules can also be written to savefile and later used to roll  back  to  this  state.
       This  can  be  used  to  implement  a  store last good configuration mechanism when experimenting with an
       iptables setup script: iptables-apply -w /etc/network/iptables.up.rules -c /etc/network/iptables.up.run

       When called as ip6tables-apply, the script will  use  ip6tables-save/-restore  and  IPv6  default  values
       instead. Default value for rulesfile is '/etc/network/iptables.up.rules'.

Legalese

       Original iptables-apply - Copyright 2006 Martin F. Krafft <madduck@madduck.net>.  Version 1.1 - Copyright
       2010 GW <gw.2010@tnode.com or http://gw.tnode.com/>.

       This  manual  page  was  written  by  Martin  F.  Krafft  <madduck@madduck.net>  and   extended   by   GW
       <gw.2010@tnode.com or http://gw.tnode.com/>.

       Permission  is  granted  to  copy, distribute and/or modify this document under the terms of the Artistic
       License 2.0.

iptables 1.8.11                                                                                IPTABLES-APPLY(8)

Name

       iptables-apply — a safer way to update iptables remotely

Options

-tseconds, --timeoutseconds
              Sets  the  timeout  in  seconds  after  which  the  script  will roll back to the previous ruleset
              (default: 10).

       -wsavefile, --writesavefile
              Specify the savefile where successfully applied rules will be written to (default if empty  string
              is given: /etc/network/iptables.up.rules).

       -cruncmd, --commandruncmd
              Run   command   runcmd   to   configure   iptables  instead  of  applying  a  rulesfile  (default:
              /etc/network/iptables.up.run).

       -h, --help
              Display usage information.

       -V, --version
              Display version information.

See Also

iptables-restore(8), iptables-save(8), iptables(8).

Synopsis

iptables-apply [-hV] [-ttimeout] [-wsavefile] {[rulesfile]|-c[runcmd]}

See Also

Man Pages
iptables Man Pages
Man Pages
apply Man Pages
Man Pages
rules Man Pages
Man Pages
defaults Man Pages
Network
Network PNG Icons
Man Pages
deb Man Pages
Script
Script PNG Icons
Man Pages
restore Man Pages
Back
Back PNG Icons
← View System admin Category← Back to Security and firewalls🙏  Credits & Acknowledgments