Hi! I've got an older CentOS 6.10 box.
I cannot issue commands to this box while it is running, but I can boot it with Fedora Live and access the file system. I want to be able to add something like
"iptables -A INPUT -p tcp --dport 22 --source 192.168.3.0/24 -j ACCEPT" to "/etc/sysconfig/iptables" so I can SSH into it but when I do, it does not survive a boot/reboot. At the top it says "# Generated by iptables-save v1.4.7 on some date..." Where is the source for what iptables-save is populating on boot? Or how else can I make the rule survive a boot? I tried to add it into "/etc/rc.d/rc.local" but that didn't work.
Thanks!

Run the command after the all your rules are entered as root

service iptables save

Thank you for the reply. I cannot do that since I don't have console access. I need to do it offline by accessing the file system with another OS.

If you have physical access you should be able to acquire console access. What is the problem?

The -A appends a rule to the bottom. Without knowing the complete ruleset it is impossible to know why using rc.local does not work. You could create all new rules from rc.local or stop the rules from being loaded which should allow all traffic.

I do have physical access, but the console interface is broken.
I had to start the sshd service in rc.local as well with the firewall rule. Kind of a slap forehead moment. Haha! I got it going.
Thanks for your time!