obs, thank you so much! that resolved the issue. I hadn't tried your solution as I ended up here by googling 12023.txt trying to go that route...

for anyone else with the issue, get obs patch file and run:

patch -u /etc/init.d/iptables centos.iptables.patch

Worked like a charm! Thanks again!

Thank you very much. Its working fine.

I just noticed the same error.

iptables: Setting chains to policy ACCEPT: security raw nat[FAILED]filter
iptables: Unloading modules: [ OK ]
iptables: Applying firewall rules: [ OK ]

Is this something I should be that concerned about? The "rules apply" so doesn't seem like a big deal?

_________________
PHP Development @ Tomakefast

Hi,
I am getting a similar error with my CentOS 6.4. Could you please place that patch again?

iptables: Flushing firewall rules: [ OK ]
iptables: Setting chains to policy ACCEPT: security raw nat[FAILED]filter
iptables: Unloading modules: [ OK ]
iptables: Applying firewall rules: [ OK ]


Regards,
Jayadevan

This worked for me on a new Centos 64bit linode.

Thanks!

on line (or about line) 142 of /etc/init.d/iptables there will be a for loop that looks something like this.
142 for i in $tables; do
143 echo -n "$i "
144 case "$i" in
145 raw)
146 $IPTABLES -t raw -P PREROUTING $policy \
147 && $IPTABLES -t raw -P OUTPUT $policy \
148 || let ret+=1
149 ;;
150 filter)
151 $IPTABLES -t filter -P INPUT $policy \
152 && $IPTABLES -t filter -P OUTPUT $policy \
153 && $IPTABLES -t filter -P FORWARD $policy \
154 || let ret+=1
155 ;;
156 nat)
157 $IPTABLES -t nat -P PREROUTING $policy \
158 && $IPTABLES -t nat -P POSTROUTING $policy \
159 && $IPTABLES -t nat -P OUTPUT $policy \
160 || let ret+=1
161 ;;
162 mangle)
163 $IPTABLES -t mangle -P PREROUTING $policy \
164 && $IPTABLES -t mangle -P POSTROUTING $policy \
165 && $IPTABLES -t mangle -P INPUT $policy \
166 && $IPTABLES -t mangle -P OUTPUT $policy \
167 && $IPTABLES -t mangle -P FORWARD $policy \
168 || let ret+=1
169 ;;
170 *)
171 let ret+=1
172 ;;
173 esac
174 done

you will need to add entries to this file

security)
$IPTABLES -t filter -P INPUT $policy \
&& $IPTABLES -t filter -P OUTPUT $policy \
&& $IPTABLES -t filter -P FORWARD $policy \
|| let ret+=1
;;

that will get rid of the error message

142 for i in $tables; do
143 echo -n "$i "
144 case "$i" in
145 security)
146 $IPTABLES -t filter -P INPUT $policy \
147 && $IPTABLES -t filter -P OUTPUT $policy \
148 && $IPTABLES -t filter -P FORWARD $policy \
149 || let ret+=1
150 ;;
151 raw)
152 $IPTABLES -t raw -P PREROUTING $policy \
153 && $IPTABLES -t raw -P OUTPUT $policy \
154 || let ret+=1
155 ;;
156 filter)
157 $IPTABLES -t filter -P INPUT $policy \
158 && $IPTABLES -t filter -P OUTPUT $policy \
159 && $IPTABLES -t filter -P FORWARD $policy \
160 || let ret+=1
161 ;;
162 nat)
163 $IPTABLES -t nat -P PREROUTING $policy \
164 && $IPTABLES -t nat -P POSTROUTING $policy \
165 && $IPTABLES -t nat -P OUTPUT $policy \
166 || let ret+=1
167 ;;
168 mangle)
169 $IPTABLES -t mangle -P PREROUTING $policy \
170 && $IPTABLES -t mangle -P POSTROUTING $policy \
171 && $IPTABLES -t mangle -P INPUT $policy \
172 && $IPTABLES -t mangle -P OUTPUT $policy \
173 && $IPTABLES -t mangle -P FORWARD $policy \
174 || let ret+=1
175 ;;
176 *)
177 let ret+=1
178 ;;
179 esac
180 done