On Mon, Mar 17, 2003 at 02:17:38PM +0100, Aaron Isotton wrote: > On Mon, 2003-03-17 at 05:05, Jamin W. Collins wrote: > > > Is there something particular that you dislike about this method? > > Or, is it in some way lacking? > > What I liked about using iptables-save and iptables-restore is that > calling /etc/init.d/firewall stop would put the firewall exactly back > into the state it was before
Restoring an unknown state can be dangerous. How do you know that the previous rule set wasn't corrupt in some way? -- Jamin W. Collins -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
