Como iniciar o iptables imediatamente após o NetworkManager?

oxidante
(usa Debian)

Enviado em 07/07/2017 - 06:54h

Pessoal, como faço para rodar o meu script de firewall (myfirewall.sh) imediatamente após o carregamento do serviço NetworkManager? Pelo log abaixo, verifica-se que vários serviços/módulos são iniciados antes do meu script (ver última linha), o que coloca em risco os dados armazenados no meu HD de backup, o qual é montado antes do NetworkManager.

// daemon.log

...

Jul  7 05:22:09 myhost NetworkManager[532]: <info> NetworkManager (version 0.9.10.0) is starting...

Jul  7 05:22:09 myhost NetworkManager[532]: <info> Read config: /etc/NetworkManager/NetworkManager.conf

Jul  7 05:22:09 myhost NetworkManager[532]: <info> WEXT support is enabled

Jul  7 05:22:11 myhost systemd[1]: Starting ACPI event daemon...

Jul  7 05:22:11 myhost systemd[1]: Started ACPI event daemon.

Jul  7 05:22:11 myhost systemd[1]: Started System Logging Service.

Jul  7 05:22:11 myhost systemd[1]: Started Restore Sound Card State.

Jul  7 05:22:11 myhost systemd[1]: Started LSB: Speech Dispatcher.

Jul  7 05:22:11 myhost systemd[1]: Started VirtualBox Linux kernel module.

Jul  7 05:22:11 myhost systemd[1]: Started Restore /etc/resolv.conf if the system crashed before the ppp link was shut down..

Jul  7 05:22:11 myhost systemd[1]: Started /etc/rc.local Compatibility.

Jul  7 05:22:11 myhost systemd[1]: Started Permit User Sessions.

Jul  7 05:22:11 myhost systemd[1]: Started LSB: Start the GNUstep distributed object mapper.

Jul  7 05:22:11 myhost systemd[1]: Started LSB: disk temperature monitoring daemon.

Jul  7 05:22:11 myhost systemd[1]: Started LSB: keep memory of all UPnP devices that announced themselves.

Jul  7 05:22:11 myhost systemd[1]: Got automount request for /proc/sys/fs/binfmt_misc, triggered by 512 (update-binfmts)

Jul  7 05:22:11 myhost sensors[586]: acpitz-virtual-0

Jul  7 05:22:11 myhost sensors[586]: Adapter: Virtual device

Jul  7 05:22:11 myhost sensors[586]: temp1:        +27.8°C  (crit = +105.0°C)

Jul  7 05:22:11 myhost sensors[586]: temp2:        +29.8°C  (crit = +105.0°C)

Jul  7 05:22:11 myhost sensors[586]: coretemp-isa-0000

Jul  7 05:22:11 myhost sensors[586]: Adapter: ISA adapter

Jul  7 05:22:11 myhost sensors[586]: Physical id 0:  +26.0°C  (high = +80.0°C, crit = +100.0°C)

Jul  7 05:22:11 myhost sensors[586]: Core 0:         +26.0°C  (high = +80.0°C, crit = +100.0°C)

Jul  7 05:22:11 myhost sensors[586]: Core 1:         +26.0°C  (high = +80.0°C, crit = +100.0°C)

Jul  7 05:22:11 myhost systemd[1]: Started Initialize hardware monitoring sensors.

Jul  7 05:22:11 myhost systemd[1]: Mounting Arbitrary Executable File Formats File System...

Jul  7 05:22:11 myhost systemd[1]: Starting (null)...

Jul  7 05:22:11 myhost systemd[1]: Starting GNOME Display Manager...

Jul  7 05:22:11 myhost systemd[1]: Starting Getty on tty1...

Jul  7 05:22:11 myhost systemd[1]: Started Getty on tty1.

Jul  7 05:22:11 myhost systemd[1]: Starting Login Prompts.

Jul  7 05:22:11 myhost systemd[1]: Reached target Login Prompts.

Jul  7 05:22:11 myhost systemd[1]: Starting vboxautostart-service.service...

Jul  7 05:22:11 myhost systemd[1]: Starting vboxweb-service.service...

Jul  7 05:22:11 myhost systemd[1]: Starting vboxballoonctrl-service.service...

Jul  7 05:22:11 myhost systemd[1]: Started Login Service.

Jul  7 05:22:11 myhost dbus[539]: [system] Activating via systemd: service name='org.freedesktop.PolicyKit1' unit='polkitd.service'

Jul  7 05:22:11 myhost systemd[1]: Starting Authenticate and Authorize Users to Run Privileged Tasks...

Jul  7 05:22:11 myhost polkitd[602]: started daemon version 0.105 using authority implementation `local' version `0.105'

Jul  7 05:22:11 myhost dbus[539]: [system] Successfully activated service 'org.freedesktop.PolicyKit1'

Jul  7 05:22:11 myhost systemd[1]: Started Authenticate and Authorize Users to Run Privileged Tasks.

Jul  7 05:22:11 myhost accounts-daemon[510]: started daemon version 0.6.37

Jul  7 05:22:11 myhost systemd[1]: Started Accounts Service.

Jul  7 05:22:11 myhost acpid: starting up with netlink and the input layer

Jul  7 05:22:11 myhost systemd[1]: Started vboxautostart-service.service.

Jul  7 05:22:11 myhost systemd[1]: Started vboxweb-service.service.

Jul  7 05:22:11 myhost systemd[1]: Started vboxballoonctrl-service.service.

Jul  7 05:22:11 myhost systemd[1]: Mounted Arbitrary Executable File Formats File System.

Jul  7 05:22:11 myhost acpid: 1 rule loaded

Jul  7 05:22:11 myhost acpid: waiting for events: event logging is off

Jul  7 05:22:11 myhost myfirewall.sh[589]: Running myfirewall script ...

 

zenull
(usa Outra)

Enviado em 07/07/2017 - 10:10h

Tenta entrar na pasta do runlevel correspondente ao seu sistema (provavelmente /etc/rc2.d) e editar os links de modo a ficar em ordem alfabética de acordo com a prioridade desejada.

Buckminster
(usa Debian)

Enviado em 07/07/2017 - 11:03h

http://debian-br.alioth.debian.org/docs/nacionais/sgml/pratico/pratico.html/ch-init.html

https://unix.stackexchange.com/questions/233468/how-does-systemd-use-etc-init-d-scripts