custom script on FW restart

I execute a script that adds a iptables logging rule for port-probing, to run it after each firewall restart I added the path to the script at the end of /etc/clearos/firewall.d/90-attack-detector, this worked fine but I noticed recently that these rules are no longer being added to iptables, it seems that 90-attack-detector might have been updated and therefore my path removed.

Where can I add a script to execute on each FW restart? does /etc/clearos/firewall.d/local get updated or is that safe?
(also I need the script to run after 90-attack-detector)