I am having issues with CSF not loading iptables rules on CentOS 8 on reboot. I have to run csf -r to apply the rules after reboot. How can I fix this?
Thanks,
Code: Select all
[root@management ~]# iptables -n -L
Chain INPUT (policy ACCEPT)
target prot opt source destination
Chain FORWARD (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
# Warning: iptables-legacy tables present, use iptables-legacy to see them
[root@management ~]# iptables -n -L
Chain INPUT (policy ACCEPT)
target prot opt source destination
Chain FORWARD (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
# Warning: iptables-legacy tables present, use iptables-legacy to see them
Code: Select all
[root@management ~]# systemctl status csf
● csf.service - ConfigServer Firewall & Security - csf
Loaded: loaded (/usr/lib/systemd/system/csf.service; enabled; vendor preset: disabled)
Active: active (exited) since Thu 2020-05-28 15:17:48 CDT; 9min ago
Process: 927 ExecStart=/usr/sbin/csf --initup (code=exited, status=0/SUCCESS)
Main PID: 927 (code=exited, status=0/SUCCESS)
May 28 15:17:44 management systemd[1]: Starting ConfigServer Firewall & Security - csf...
May 28 15:17:48 management csf[927]: (restoring iptables) (restoring ip6tables)
May 28 15:17:48 management systemd[1]: Started ConfigServer Firewall & Security - csf.
Code: Select all
[root@management ~]# perl /usr/local/csf/bin/csftest.pl
Testing ip_tables/iptable_filter...OK
Testing ipt_LOG...OK
Testing ipt_multiport/xt_multiport...OK
Testing ipt_REJECT...OK
Testing ipt_state/xt_state...OK
Testing ipt_limit/xt_limit...OK
Testing ipt_recent...OK
Testing xt_connlimit...OK
Testing ipt_owner/xt_owner...OK
Testing iptable_nat/ipt_REDIRECT...OK
Testing iptable_nat/ipt_DNAT...OK
RESULT: csf should function on this server