--[[ cfgfile-model loads all .cfg files in this directory and
  evaluates them by putting return ({ ... }) around file contents.
  This file contains body of lua table with one item per config file.
  Each item is table with following keys currently having meaning:
    app - string that is used to group items by controller
    section - string that is used to group items visually on page
    name - short name that is shown to user
    filename - filesystem path of config file
    descr - descr, one liner
--]]

{ app="firewall", section="general",
  name="params", filename="/etc/shorewall/params",
  descr="Define variables used in the other configuration files." },
{ app="firewall", section="general",
  name="shorewall", filename="/etc/shorewall/shorewall.conf",
  descr="Modify global configuration settings." },
{ app="firewall", section="firewalling",
  name="zones", filename="/etc/shorewall/zones",
  descr="Name network partitions. Firewall rules are applied to defined zones." },
{ app="firewall", section="firewalling",
  name="interfaces", filename="/etc/shorewall/interfaces",
  descr="Map physical interfaces to named zones." },
{ app="firewall", section="firewalling",
  name="hosts", filename="/etc/shorewall/hosts",
  descr="Name specific hosts within zones." },
{ app="firewall", section="firewalling",
  name="policy", filename="/etc/shorewall/policy",
  descr="Set default rules (policies) for zones." },
{ app="firewall", section="firewalling",
  name="rules", filename="/etc/shorewall/rules",
  descr="Define exceptions to policies." },
{ app="firewall", section="firewalling",
  name="routestopped", filename="/etc/shorewall/routestopped",
  descr="Define hosts that can access this host when the firewall is \"stopped\"" },
{ app="firewall", section="firewalling",
  name="tunnels", filename="/etc/shorewall/tunnels",
  descr="Specify ipsec tunnel endpoints" },
{ app="firewall", section="firewalling",
  name="blacklist", filename="/etc/shorewall/blacklist",
  descr="List ip addresses or names that should be denied all access to the firewall." },
{ app="firewall", section="nat",
  name="masq", filename="/etc/shorewall/masq",
  descr="Define dynamic Masquerading or DNAT tables" },
{ app="firewall", section="nat",
  name="nat", filename="/etc/shorewall/nat",
  descr="Define static Network Address Translation table" },
{ app="firewall", section="qos",
  name="tos", filename="/etc/shorewall/tos",
  descr="Specify type of service markers for packets traversing the firewall." },
{ app="firewall", section="qos",
  name="tcrules", filename="/etc/shorewall/tcrules",
  descr="Define traffic control rules." },

-- /* vim: set filetype=lua : */