man uruk-save (Administration système) - save uruk rc configuration in iptables-save-style format

NAME

uruk-save - save uruk rc configuration in iptables-save-style format

SYNOPSIS

uruk-save [-6]

OPTIONS



Don't save iptables rules but save ip6tables rules, for IPv6 filtering.

DESCRIPTION

uruk-save saves the IPv4 rules in /etc/uruk/rc in iptables-save(5)-style format, without invoking iptables(8). If the -6 option is given, the IPv6 rules (if any) in /etc/uruk/rc are saved, in ip6tables-save(5)-style format. It prints output to stdout; suggested invocation therefore is

 # uruk-save > /var/lib/uruk/iptables/active

or

 # uruk-save -6 > /var/lib/uruk/ip6tables/active

. This script is useful if you don't like the default behaviour of the uruk init script, and would like it to load the current uruk rc file instead of the current active file. Please note: generally you don't need to invoke this script manually: the init script which comes with uruk is suitable for most cases, it invokes uruk-save if needed.

WARNING

Just as uruk, in order to keep the uruk-save script small and simple, the script does very little error handling. It does not check the contents of the rc file in any way before executing it. When your rc file contains bogus stuff, uruk-save will very likely behave in unexpected ways. Caveat emptor.

Things will likely break if you do fancy stuff in an rc hook file. For instance, uruk-save saves the filter table only. If you define mangle or nat tables, things will break.

If your rc file is in verbose mode (i.e. it features set -x) or in no-act mode (i.e. it features iptables='echo iptables'), uruk-save fails.

SEE ALSO

uruk(8), uruk-rc(5) .

iptables(8), iptables-save(8), iptables-restore(8), http://www.netfilter.org/

COPYRIGHT

Copyright (C) 2005 Joost van Baal

This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version.

This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.

You should have received a copy of the GNU General Public License along with this program (see COPYING); if not, check with http://www.gnu.org/copyleft/gpl.html or write to the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.

AUTHOR

Joost van Baal <joostvb-uruk@mdcc.cx>