Firewall configuration
GENERAL
Modify global configuration settings.
Define variables used in the other configuratino files.
Name network partions. Firewal rules are applied to defined zones.
Map physical interfaces to named zones.
Map individual hosts or networks to named zones.
FIREWALLING
Set default rules (policies) for zones.
Define exceptions to policies.
Define hosts that can access this host when the firewall is "stopped".
Specify ipsec tunel endpoints.
List ip addresses or names that should be denied all access to the firewall.
NAT
Define dynamic Masquerading or DNAT tables.
Define static Network Address Translation tables.
QOS
Specify type of service markers for packets traversing the firewall.
Define traffic control devices.
Define traffic control classes.
Define traffic control rules.
SHOW CONFIG FILES
Provide a autogenerated list of files in '/etc/shorewall'.
SYSTEM INFO
Program version
Program status
Program state
Show shorewall details
[connections] Displays the IP connections currently being tracked by the firewall
--]] ?>
MANAGEMENT
Preform check of configs
Preform restart of firewall
Preform refresh of configs
Involves black list, ECN control rules, and traffic shaping...
--]] ?>