diff options
| author | Mika Havela <mika.havela@gmail.com> | 2007-11-28 14:52:05 +0000 |
|---|---|---|
| committer | Mika Havela <mika.havela@gmail.com> | 2007-11-28 14:52:05 +0000 |
| commit | 73bd0a6d99c0bdfc1db5432706a3aa577617b10c (patch) | |
| tree | d3c4527a0a6bae8e7ca370457196ccbab3bcf57f | |
| parent | cd93f289dc1b17ddeeaab83cc49d789c9454c158 (diff) | |
| download | acf-shorewall-73bd0a6d99c0bdfc1db5432706a3aa577617b10c.tar.bz2 acf-shorewall-73bd0a6d99c0bdfc1db5432706a3aa577617b10c.tar.xz | |
Initial modifications to shorewall
git-svn-id: svn://svn.alpinelinux.org/acf/shorewall/trunk@377 ab2d0c66-481e-0410-8bed-d214d4d58bed
| -rw-r--r-- | shorewall-module.lua | 4 | ||||
| -rw-r--r-- | shorewall-read-html.lsp | 73 |
2 files changed, 76 insertions, 1 deletions
diff --git a/shorewall-module.lua b/shorewall-module.lua new file mode 100644 index 0000000..a05ae0d --- /dev/null +++ b/shorewall-module.lua @@ -0,0 +1,4 @@ +-- shorewall model methods +module (..., package.seeall) + + diff --git a/shorewall-read-html.lsp b/shorewall-read-html.lsp index 0ea1ec8..21f614f 100644 --- a/shorewall-read-html.lsp +++ b/shorewall-read-html.lsp @@ -1,6 +1,77 @@ <? local view = ... ?> -<h1>Edit</h1> +<h1>Firewall configuration</h1> + +<h2>GENERAL</h2> + +<dt>shorewall.conf</dt> +<dd>Modify global configuration settings.</dd> + +<dt>params</dt> +<dd>Define variables used in the other configuratino files.</dd> + +<dt>zones</dt> +<dd>Name network partions. Firewal rules are applied to defined zones.</dd> + +<dt>interfaces</dt> +<dd>Map physical interfaces to named zones.</dd> + +<dt>hosts</dt> +<dd>Map individual hosts or networks to named zones.</dd> + +<h2>FIREWALLING</h2> + +<dt>policy</dt> +<dd>Set default rules (policies) for zones.</dd> + +<dt>rules</dt> +<dd>Define exceptions to policies.</dd> + +<dt>routestopped</dt> +<dd>Define hosts that can access this host when the firewall is "stopped".</dd> + +<dt>tunnels</dt> +<dd>Specify ipsec tunel endpoints.</dd> + +<dt>blacklist</dt> +<dd>List ip addresses or names that should be denied all access to the firewall.</dd> + +<h2>NAT</h2> + +<dt>masq</dt> +<dd>Define dynamic Masquerading or DNAT tables.</dd> + +<dt>nat</dt> +<dd>Define static Network Address Translation tables.</dd> + +<h2>QOS</h2> + +<dt>tos</dt> +<dd>Specify type of service markers for packets traversing the firewall.</dd> + +<dt>tcdevices</dt> +<dd>Define traffic control devices.</dd> + +<dt>tcclasses</dt> +<dd>Define traffic control classes.</dd> + +<dt>tcrules</dt> +<dd>Define traffic control rules.</dd> + +<h2>OTHER</h2> + +<dt>View all files/configs</dt> +<dd>Provide a autogenerated list of files in '/etc/shorewall'.</dd> + +<h2>SYSTEM INFO</h2> + +<dt>Program version</dt> +<dd><?= view.version ?></dd> + +<h2>MANAGEMENT</h2> +<dt>Program Status</dt> +<dd>[running|not]</dd> + <? --Status Block for i,item in ipairs(view.note or {}) do |