Login or Register to Ask a Question and Join Our Community

Linux and UNIX Man Pages

Linux & Unix Commands - Search Man Pages

uruk-save(8) [debian man page]

uruk-save(8)						      SYSTEM ADMINISTRATION						      uruk-save(8)

  NAME
      uruk-save - save uruk rc configuration in iptables-save-style format

  SYNOPSIS
      uruk-save [-6 (save ip6tables rules)]

  OPTIONS
      -6 (save ip6tables rules)
	Don't save iptables rules but save ip6tables rules, for IPv6 filtering.

  DESCRIPTION
      uruk-save  saves	the  IPv4 rules in /etc/uruk/rc in iptables-save(5)-style format, without invoking iptables(8). If the -6 option is given,
      the IPv6 rules (if any) in /etc/uruk/rc are saved, in ip6tables-save(5)-style format. It	prints	output	to  stdout;  suggested	invocation
      therefore is

       # uruk-save > /var/lib/uruk/iptables/active

      or

       # uruk-save -6 > /var/lib/uruk/ip6tables/active

      .  This script is useful if you don't like the default behaviour of the uruk init script, and would like it to load the current uruk rc file
      instead of the current active file. Please note: generally you don't need to invoke this script manually: the init script which  comes  with
      uruk is suitable for most cases, it invokes uruk-save if needed.

  WARNING
      Just as uruk, in order to keep the uruk-save script small and simple, the script does very little error handling. It does not check the con-
      tents of the rc file in any way before executing it. When your rc file contains bogus stuff, uruk-save will very likely behave in unexpected
      ways. Caveat emptor.

      Things will likely break if you do fancy stuff in an rc hook file. For instance, uruk-save saves the filter table only. If you define mangle
      or nat tables, things will break.

      If your rc file is in verbose mode (i.e. it features set -x) or in no-act mode (i.e. it features iptables='echo iptables'), uruk-save fails.

  SEE ALSO
      uruk(8), uruk-rc(5) .

  COPYRIGHT
      Copyright (C) 2005 Joost van Baal <joostvb-uruk@mdcc.cx>

      This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License  as  published	by
      the Free Software Foundation, either version 3 of the License, or (at your option) any later version.

      This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABIL-
      ITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.

      You should have received a copy of the GNU General Public License along with this program. If not, see http://www.gnu.org/licenses/.

  AUTHOR
      Joost van Baal <joostvb-uruk@mdcc.cx>

  uruk-save 20120530						      30 mai 2012							uruk-save(8)

Check Out this Related Man Page

IPTABLES-APPLY(8)						  iptables 1.6.1						 IPTABLES-APPLY(8)

NAME

       iptables-apply - a safer way to update iptables remotely

SYNOPSIS

       iptables-apply [-hV] [-t timeout] [-w savefile] {[rulesfile]|-c [runcmd]}

DESCRIPTION

       iptables-apply  will  try  to  apply  a	new rulesfile (as output by iptables-save, read by iptables-restore) or run a command to configure
       iptables and then prompt the user whether the changes are okay. If the new iptables rules cut the existing connection, the user will not be
       able to answer affirmatively. In this case, the script rolls back to the previous working iptables rules after the timeout expires.

       Successfully applied rules can also be written to savefile and later used to roll back to this state. This can be used to implement a store
       last good configuration mechanism when experimenting with an iptables setup script:  iptables-apply  -w	/etc/network/iptables.up.rules	-c
       /etc/network/iptables.up.run

       When called as ip6tables-apply, the script will use ip6tables-save/-restore and IPv6 default values instead. Default value for rulesfile is
       '/etc/network/iptables.up.rules'.

OPTIONS

       -t seconds, --timeout seconds
	      Sets the timeout in seconds after which the script will roll back to the previous ruleset (default: 10).

       -w savefile, --write savefile
	      Specify  the  savefile  where  successfully  applied  rules  will   be   written	 to   (default	 if   empty   string   is   given:
	      /etc/network/iptables.up.rules).

       -c runcmd, --command runcmd
	      Run command runcmd to configure iptables instead of applying a rulesfile (default: /etc/network/iptables.up.run).

       -h, --help
	      Display usage information.

       -V, --version
	      Display version information.

SEE ALSO

       iptables-restore(8), iptables-save(8), iptables(8).

LEGALESE

       Original  iptables-apply  -  Copyright  2006 Martin F. Krafft <madduck@madduck.net>.  Version 1.1 - Copyright 2010 GW <gw.2010@tnode.com or
       http://gw.tnode.com/>.

       This manual page was written by Martin F. Krafft <madduck@madduck.net> and extended by GW <gw.2010@tnode.com or http://gw.tnode.com/>.

       Permission is granted to copy, distribute and/or modify this document under the terms of the Artistic License 2.0.

iptables 1.6.1															 IPTABLES-APPLY(8)
Man Page