From aa652fda1b8ee390472076fad905ef7023ba6d00 Mon Sep 17 00:00:00 2001
From: Tom Eastep <teastep@shorewall.net>
Date: Sat, 7 Jul 2012 07:55:17 -0700
Subject: [PATCH] Add FAQ 99

- Empty ruleset after boot even though Shorewall runs.
---
 docs/FAQ.xml | 11 +++++++++++
 1 file changed, 11 insertions(+)

diff --git a/docs/FAQ.xml b/docs/FAQ.xml
index f7c4a7f41..c146d65d6 100644
--- a/docs/FAQ.xml
+++ b/docs/FAQ.xml
@@ -2150,6 +2150,17 @@ gateway:~# </programlisting>
       and configured the <emphasis>shorewall-init</emphasis> package and a
       required interface has gone down.</para>
     </section>
+
+    <section id="faq99">
+      <title>(FAQ 99) My /var/lib/shorewall-init.log shows that Shorewall is
+      running at boot but after boot 'iptables -L' shows an empty
+      configuration</title>
+
+      <para><emphasis role="bold">Answer</emphasis>: This is caused by your
+      failure to disable your distributions default iptables configuration
+      tool when you installed Shorewall. Look for a service called 'iptables'
+      that is being started after Shorewall and disable it.</para>
+    </section>
   </section>
 
   <section id="MultiISP">