Make Iptables Rules Persistent on Reboot (Ubtuntu 22.04)
How to make iptables rules persistent upon reboot on Ubuntu 22.04 / Debian or its derivatives, also how to add comments to iptables rules
  • Mobeen Syed
  • October 3, 2022
  • 12:54 pm
  • 0 comments

Today I'm going to show you how to make your iptables rule sets more readable with comments and also how to make sure iptables rules persistent or stay put after you reboot the system. Right now all these rules are only in the kernel when you reboot they'll all disappear unless you find a way to save.

Difference between Iptables and UFW in Ubuntu 22.04

Iptables is a kernel level ip filtering mechanism. It does allow you to make routing decisions and so on on IP packets, whereas UFW is a simplified firewall mechanism that is implemented on top of iptables. UFW is not as flexible but is easier to configure for common scenarios.

UFW provides a basic default firewall and allows you to easily turn on and off basic services. To use IPtables you need to understand TCP/IP connections, more complicated protocols (e.g. NFS) and it can still be complicated.

While UFW is not capable of some of the things that iptables is it is a much simplified firewall and if it provides the capabilities that you need it is much simpler to configure and easier to have confidence that it is doing what you actually want.

Add comments to Iptables rules

Comments make your rule sets more readable so let's get rid of this SSH rule and add it back with a comment so first will delete the rule. And then we'll add it back with a comment. To add a comment all you have to do is add the comment module 

sudo iptables -I INPUT -p tcp --dport 22 -j ACCEPT -m comment --comment 'allow ssh for all'

Make Iptables rules persistent on reboot

if you're running debian or its derivatives you need to install the IP tables persistent package from the apt repository.

sudo apt install iptables-persistent

during the process of installation it will ask you to save ipv4 and ipv6 rules to be used when rebooting the system, you can say yes to save the files or No to save the rules manually using the following commands

sudo sh -c "iptables-save > /etc/iptables/rules.v4"
sudo sh -c "ip6tables-save > /etc/iptables/rules.v6"

Reboot your system and check the iptables rules

sudo iptables -nL

you should see all your rules intact.

Also to refer similar articles on Ubuntu and wordpress visit the following page

My BLOG POSTS

Similar Posts

  • All
  • fail2ban
  • raspberrypi
  • ssh
  • ubuntu
  • apache2
  • Plex
  • ssl
  • deluge
  • torrent
Host a WordPress Website on a Synology NAS

Mobeen Syed on December 4, 2023

This Article will help you understand how to Host a WordPress Website or a Blog on a Synology NAS.
READ MORE
Enable /etc/rc.local with systemd on Ubuntu 20.04

Mobeen Syed on February 17, 2021

This article describes how to enable /etc/rc.local (startup) with systemd on Ubuntu 20.04 (focal fossa) linux distribution.
READ MORE
LetsEncrypt Logo - Letsencrypt is used for SSL secure access for Nextcloud
SSL Secure Access for own domain using Free LetsEncrypt Certificates

Mobeen Syed on December 8, 2020

Enable and Configure SSL Secure access (https) for NextCloud or any domain you own using LetsEncrypt Free SSL Certificates which are renewable
READ MORE

Leave a Reply

Your email address will not be published. Required fields are marked *