[1793] | 1 | # Load additional iptables modules (nat helpers) |
---|
| 2 | # Default: -none- |
---|
| 3 | # Space separated list of nat helpers (e.g. 'ip_nat_ftp ip_nat_irc'), which |
---|
| 4 | # are loaded after the firewall rules are applied. Options for the helpers are |
---|
| 5 | # stored in /etc/modprobe.conf. |
---|
| 6 | IPTABLES_MODULES="" |
---|
| 7 | |
---|
| 8 | # Unload modules on restart and stop |
---|
| 9 | # Value: yes|no, default: yes |
---|
| 10 | # This option has to be 'yes' to get to a sane state for a firewall |
---|
| 11 | # restart or stop. Only set to 'no' if there are problems unloading netfilter |
---|
| 12 | # modules. |
---|
| 13 | IPTABLES_MODULES_UNLOAD="yes" |
---|
| 14 | |
---|
| 15 | # Save current firewall rules on stop. |
---|
| 16 | # Value: yes|no, default: no |
---|
| 17 | # Saves all firewall rules to /etc/sysconfig/iptables if firewall gets stopped |
---|
| 18 | # (e.g. on system shutdown). |
---|
| 19 | IPTABLES_SAVE_ON_STOP="no" |
---|
| 20 | |
---|
| 21 | # Save current firewall rules on restart. |
---|
| 22 | # Value: yes|no, default: no |
---|
| 23 | # Saves all firewall rules to /etc/sysconfig/iptables if firewall gets |
---|
| 24 | # restarted. |
---|
| 25 | IPTABLES_SAVE_ON_RESTART="no" |
---|
| 26 | |
---|
| 27 | # Save (and restore) rule and chain counter. |
---|
| 28 | # Value: yes|no, default: no |
---|
| 29 | # Save counters for rules and chains to /etc/sysconfig/iptables if |
---|
| 30 | # 'service iptables save' is called or on stop or restart if SAVE_ON_STOP or |
---|
| 31 | # SAVE_ON_RESTART is enabled. |
---|
| 32 | IPTABLES_SAVE_COUNTER="no" |
---|
| 33 | |
---|
| 34 | # Numeric status output |
---|
| 35 | # Value: yes|no, default: yes |
---|
| 36 | # Print IP addresses and port numbers in numeric format in the status output. |
---|
| 37 | IPTABLES_STATUS_NUMERIC="yes" |
---|
| 38 | |
---|
| 39 | # Verbose status output |
---|
| 40 | # Value: yes|no, default: yes |
---|
| 41 | # Print info about the number of packets and bytes plus the "input-" and |
---|
| 42 | # "outputdevice" in the status output. |
---|
| 43 | IPTABLES_STATUS_VERBOSE="no" |
---|
| 44 | |
---|
| 45 | # Status output with numbered lines |
---|
| 46 | # Value: yes|no, default: yes |
---|
| 47 | # Print a counter/number for every rule in the status output. |
---|
| 48 | IPTABLES_STATUS_LINENUMBERS="yes" |
---|