projects / config / iptables.git / blob
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
Makefile: support deploying with netfilter-persistent
[config/iptables.git] / Makefile
1 all:
2
3 deploy-workstation:
4         -[ -x /usr/sbin/nft ] && sudo nft flush ruleset
5         sudo ./iptables-workstation.sh
6         sudo sh -c "iptables-save > rules.v4"
7         sudo sh -c "ip6tables-save > rules.v6"
8         -if [ -x /usr/sbin/netfilter-persistent ]; \
9         then \
10           [ -d /etc/iptables ] && sudo mkdir /etc/iptables; \
11           sudo mv rules.v[46] /etc/iptables; \
12           sudo etckeeper vcs add iptables; \
13           if ! sudo etckeeper vcs diff --staged --no-patch --exit-code -- iptables; \
14           then \
15             sudo etckeeper vcs commit -m "iptables: update rules" -- iptables; \
16           fi; \
17           sudo systemctl restart netfilter-persistent.service; \
18         fi
19
Configuration files for the iptables/netfilter linux packet filtering framework