FS#35010 - iptables/ip6tables should be started before network

Attached to Project: Arch Linux
Opened by Michal Svoboda (pht) - Sunday, 28 April 2013, 08:41 GMT
Last edited by Evangelos Foutras (foutrelis) - Sunday, 28 April 2013, 13:53 GMT
Task Type Bug Report
Category Security
Status Closed
Assigned To No-one
Architecture All
Severity Medium
Priority Normal
Reported Version
Due in Version Undecided
Due Date Undecided
Percent Complete 100%
Votes 0
Private No


On boot, firewall rules (ie. execution of iptables, ip6tables services) should be processed before any interfaces are configured (ie. start of netctl service). Otherwise services can be exposed to the network for a brief time on system startup. Please add a dependency to the services so that the correct order of starting is enforced.
This task depends upon

Closed by  Evangelos Foutras (foutrelis)
Sunday, 28 April 2013, 13:53 GMT
Reason for closing:  Duplicate
Additional comments about closing:   FS#33478