1 (edited by smart01 2013-08-20 17:08:17)

Topic: iptables NO - how to say YES after installation [SOLVED]

==== Required information ====
- iRedMail version: 0.8.5
- Store mail accounts in which backend (LDAP/MySQL/PGSQL): MySQL
- Linux/BSD distribution name and version:  Debian Wheezy
- Related log if you're reporting an issue:
====

Hello,
during installation i choose NO to install the default firewall/iptables.
Now i want to enable it after some testing.
Is there an easy was to to so with maybe a switch in iRedmail.sh ?

if i run iRedmail.sh again i won't ask me again

Kind Regards,

----

Spider Email Archiver: On-Premises, lightweight email archiving software developed by iRedMail team. Supports Amazon S3 compatible storage and custom branding.

2

Re: iptables NO - how to say YES after installation [SOLVED]

try 'service iptables restart'

3 (edited by smart01 2013-08-16 19:52:16)

Re: iptables NO - how to say YES after installation [SOLVED]

bryanchapman9999 wrote:

try 'service iptables restart'


is that a guess?
how should this 'solution' do the install job of default rules etc.?

btw.   because the install wasn't done, there is no iptables service to be started...

4

Re: iptables NO - how to say YES after installation [SOLVED]

Is your /etc/sysconfig/iptables file populated?

Just because you answered no does not mean the rules would not be written to a file

restart was a typo - service iptables start (although restart would still do the job).

Not a solution, but an answer to your question - dont like it? dont do it!

smart01 wrote:
bryanchapman9999 wrote:

try 'service iptables restart'


is that a guess?
how should this 'solution' do the install job of default rules etc.?

btw.   because the install wasn't done, there is no iptables service to be started...

5

Re: iptables NO - how to say YES after installation [SOLVED]

smart01 wrote:

Now i want to enable it after some testing.
Is there an easy was to to so with maybe a switch in iRedmail.sh ?

You can copy files shipped in iRedMail to achieve this purpose:

- iRedMail-0.8.5/samples/iptables.init.debian -> /etc/init.d/iptables
- iRedMail-0.8.5/samples/iptables.rules -> /etc/default/iptables

Then you can control iptables service with /etc/init.d/iptables script (stop/start/restart).

WARNING: please check /etc/default/iptables before starting/restarting it, for example, open required network ports like sshd.

6

Re: iptables NO - how to say YES after installation [SOLVED]

Thank you very much for your kind and perfect answer.

SOLVED



ZhangHuangbin wrote:
smart01 wrote:

Now i want to enable it after some testing.
Is there an easy was to to so with maybe a switch in iRedmail.sh ?

You can copy files shipped in iRedMail to achieve this purpose:

- iRedMail-0.8.5/samples/iptables.init.debian -> /etc/init.d/iptables
- iRedMail-0.8.5/samples/iptables.rules -> /etc/default/iptables

Then you can control iptables service with /etc/init.d/iptables script (stop/start/restart).

WARNING: please check /etc/default/iptables before starting/restarting it, for example, open required network ports like sshd.