> On 22/08/24 at 19:20, DdB wrote:
> > Beloved debian users,
> >
> > After years of using GNOME (even back in my Ubuntu-days), i got fed up
> > with the ever changing behavior, which came on top of "development
> > politics". And since i was/am still on buster, i decided to move forward
> > to bookworm-KDE. But i am old and slow. It really took me a month to get
> > a sort of minimal version up and running. I call this step:
> > proof-of-concept. Now comes the harder part: to really take control of
> > this desktop, not like a developer, but as a user. (I am currently
> > evaluating to make use of ansible and redo the whole setup, but in a
> > reproducible way.)
> > And i got my VPN client working in KDE, only the iptable rules to
> > protect me from acidental leaks (kill switch) need to be reinstalled
> > after every boot. How to make them permanent the right way?
DdB,
I have little technical knowledge of Linux, compared to the things you
indicated that you do.
I use KDE but I do not modify it beyond using the UI's own methods for menus,
etc. I also use XFCE where to make changes to the menus I install and use
menulibre.
In general, I use the base installed packages from the Debian repositories, and
I do not alter the environment or its file systems. I guess a bit boring for
many people in this email list, however it provides me with a stable and
working environment. Hence I cannot offer suggests for many of the things you
mentioned. However I do use iptables and now nftables (thanks to help provided
from people in this Debian User list).
Maybe the answer to your question "How to make them permanent the right way?"
would be by installing and using "iptables-persistent". I first set up my
working rules, then once they are correct, I install iptables-persistent and
save my rules. The below Debian web site offers another way besides using
iptables-persistent, but I have not used this method.
# apt install iptables-persistent
https://wiki.debian.org/iptables
Another way is to use the package iptables-persistent. Rules can be stored
something like this:
iptables-save > /etc/iptables/rules.v4
ip6tables-save > /etc/iptables/rules.v6
https://www.cyberciti.biz/faq/how-to-save-iptables-firewall-rules-permanently-on-linux/
George.
