On 06/15/2015 11:55 PM, David Sommerseth wrote:
> On 16 June 2015 07:44:06 CEST, ToddAndMargo <[log in to unmask]> wrote:
>> Hi All,
>>
>> In SL7, I presume firewalld has replaced iptables.
>>
>> My SL6 iptables scripts (four of them) are really quite complex
>> and have been refined over the years (two Ethernet ports and
>> one fake Ethernet port, etc.).
>>
>> I was thinking of going back to them in SL7, but am a bit
>> confused as to how.   This is what I have so far:
>>
>>
>>       iptables and firewall on FC19+ and EL7+
>>
>>      Reference: http://serverfault.com/questions/470287/how-to-enable-
>> iptables-instead-of-firewalld-services-on-rhel-7-and-fedora-18
>>
>>       iptables has been replaced with firewalld.
>>
>>       You can disable firewalld with the following:
>>           # systemctl disable firewalld.service
>>           # systemctl stop firewalld.service
>>
>>
>>       If you want to use iptables instead (disable firewalld first):
>>
>>           # yum|dnf install iptables-services
>>
>>
>> Okay so far, but I haven't figured out how to stitch in
>> my old iptables scripts.  Or where for that matter.
>>
>> Many thanks,
>> -T
>
>
> firewalld isn't replacing iptables, it actually depends on it. Firewalld is more like a more advanced configuration tool for iptables.
>
> IIRC, with the iptables-services package installed you get the same iptables behaviour as in SL6.  That means you have the configuration located in /etc/sysconfig/iptables*.
>
> --
> kind regards,
>
> David Sommerseth
>

Hi David,

Thank you. I had thought for a moment that firewalld had replaced
iptables

Just out of curiosity, does iptables-services have to be active to  all 
iptables with a script?

May thanks,
-T