I’m trying to add this configuration to my IPtables:
echo "IPTABLES_MODULES=\"nf_conntract_tftp nf_conntrack_ftp nf_conntrack_netbios_ns\"" >> /etc/sysconfig/iptables-config for port in 80 443 21 3306 2049 20048 111 138 139 445; do iptables -I INPUT 1 -p tcp --dport $port -j ACCEPT; done for port in 69 111 4011 137; do iptables -I INPUT 1 -p udp --dport $port -j ACCEPT; done service iptables save
but when I run the first line it gives me the error no file or directory. I checked the directories under /etc and did not see /sysconfig. Do I have to create that directory manually? I am running 1.5.9. Reason I’m digging around with IP tables is because I’m trying to find a way around securing NFS but on the wiki it says that there currently is no way to do it. I’m trying to see if I can find a way to at least restrict traffic to the server to one subnet on our production environment.