1 # Load additional iptables modules (nat helpers)
3 # Space separated list of nat helpers (e.g. 'ip_nat_ftp ip_nat_irc'), which
4 # are loaded after the firewall rules are applied. Options for the helpers are
5 # stored in /etc/modules.conf.
6 IPTABLES_MODULES="ip_conntrack vnet_tun"
8 # Unload modules on restart and stop
9 # Value: yes|no, default: yes
10 # This option has to be 'yes' to get to a sane state for a firewall
11 # restart or stop. Only set to 'no' if there are problems unloading netfilter
13 #IPTABLES_MODULES_UNLOAD="yes"
15 # Save current firewall rules on stop.
16 # Value: yes|no, default: no
17 # Saves all firewall rules to /etc/sysconfig/iptables if firewall gets stopped
18 # (e.g. on system shutdown).
19 #IPTABLES_SAVE_ON_STOP="no"
21 # Save current firewall rules on restart.
22 # Value: yes|no, default: no
23 # Saves all firewall rules to /etc/sysconfig/iptables if firewall gets
25 #IPTABLES_SAVE_ON_RESTART="no"
27 # Save (and restore) rule and chain counter.
28 # Value: yes|no, default: no
29 # Save counters for rules and chains to /etc/sysconfig/iptables if
30 # 'service iptables save' is called or on stop or restart if SAVE_ON_STOP or
31 # SAVE_ON_RESTART is enabled.
32 #IPTABLES_SAVE_COUNTER="no"
34 # Numeric status output
35 # Value: yes|no, default: no
36 # Print IP addresses and port numbers in numeric format in the status output.
37 #IPTABLES_STATUS_NUMERIC="no"