In CentOS 6, on backwater, iptables was not starting cleanly. Found a patch for the init script. Create a file named centos.iptables.patch that contains:
--- 5350.orig.sh 2011-05-27 19:58:32.000000000 +0100 +++ 5350.sh 2011-05-27 19:57:32.000000000 +0100 @@ -120,6 +120,12 @@ for i in $tables; do echo -n "$i " case "$i" in + security) + $IPTABLES -t security -P INPUT $policy \ + && $IPTABLES -t security -P OUTPUT $policy \ + && $IPTABLES -t security -P FORWARD $policy \ + || let ret+=1 + ;; raw) $IPTABLES -t raw -P PREROUTING $policy \ && $IPTABLES -t raw -P OUTPUT $policy \
then run (as root):
patch -u /etc/init.d/iptables centos.iptables.patch
Note: “patch needs to be installed using “yum install patch.”
Jay Everson has over 20 years experience supporting production infrastructure and software R&D Labs. He has 12+ years experience in management and has also spent time in Software Engineer, Infrastructure Architect and Team Lead roles.