Dave,<div><br></div><div>Normally (as far as I'm aware), this would be done with the "iptables" command, adding that whole string as its arguments:</div><div><br></div><div># iptables -A RH-Firewall-1-INPUT -m state --state NEW,ESTABLISHED,RELATED -m tcp -p tcp --dport 3128 -j ACCEPT</div>
<div><br></div><div>Try running that in a terminal as root.</div><div><br></div><div>- Ryan<br><br><div class="gmail_quote">On Wed, Oct 31, 2012 at 4:01 PM, David Spencer <span dir="ltr"><<a href="mailto:spencer@pageweavers.com" target="_blank">spencer@pageweavers.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">I'm trying to install squid on one of my CentOS 5 servers. To do this, I found a number of cookbook pages using google. Many of them looked like this one:<br>
<br>
<a href="http://www.baremetalcloud.com/index.php/en/homepage/105-english/mbcdocumentation/how-to/108-installing-squid-proxy-server-on-centos" target="_blank">http://www.baremetalcloud.com/index.php/en/homepage/105-english/mbcdocumentation/how-to/108-installing-squid-proxy-server-on-centos</a><br>
<br>
Installing squid was easy enough. When I got to the last part about updating the iptables file "/etc/sysconfig/iptables" with this:<br>
<br>
-A RH-Firewall-1-INPUT -m state --state NEW,ESTABLISHED,RELATED -m tcp -p tcp --dport 3128 -j ACCEPT<br>
<br>
that was easy because that file was empty. However, when I tried to restart iptables I got an error:<br>
<br>
Applying iptables firewall rules: iptables-restore: line 1 failed<br>
[FAILED]<br>
<br>
There's too many moving parts here. Do I have a syntax error in the iptables command or is there something else I just missed because it wasn't in the cookbook. Any guidance is appreciated.<br>
<br>
-- Dave Spencer<br>
<br>
_______________________________________________<br>
vox-tech mailing list<br>
<a href="mailto:vox-tech@lists.lugod.org">vox-tech@lists.lugod.org</a><br>
<a href="http://lists.lugod.org/mailman/listinfo/vox-tech" target="_blank">http://lists.lugod.org/mailman/listinfo/vox-tech</a><br>
</blockquote></div><br></div>