1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
|
--[[ cfgfile-model loads all .cfg files in this directory and
evaluates them by putting return ({ ... }) around file contents.
This file contains body of lua table with one item per config file.
Each item is table with following keys currently having meaning:
app - string that is used to group items by controller
section - string that is used to group items visually on page
name - short name that is shown to user
filename - filesystem path of config file
descr - descr, one liner
--]]
{ app="firewall", section="general",
name="params", filename="/etc/shorewall/params",
descr="Define variables used in the other configuration files." },
{ app="firewall", section="general",
name="shorewall", filename="/etc/shorewall/shorewall.conf",
descr="Modify global configuration settings." },
{ app="firewall", section="firewalling",
name="zones", filename="/etc/shorewall/zones",
descr="Name network partitions. Firewall rules are applied to defined zones." },
{ app="firewall", section="firewalling",
name="interfaces", filename="/etc/shorewall/interfaces",
descr="Map physical interfaces to named zones." },
{ app="firewall", section="firewalling",
name="hosts", filename="/etc/shorewall/hosts",
descr="Name specific hosts within zones." },
{ app="firewall", section="firewalling",
name="policy", filename="/etc/shorewall/policy",
descr="Set default rules (policies) for zones." },
{ app="firewall", section="firewalling",
name="rules", filename="/etc/shorewall/rules",
descr="Define exceptions to policies." },
{ app="firewall", section="firewalling",
name="routestopped", filename="/etc/shorewall/routestopped",
descr="Define hosts that can access this host when the firewall is \"stopped\"" },
{ app="firewall", section="firewalling",
name="tunnels", filename="/etc/shorewall/tunnels",
descr="Specify ipsec tunnel endpoints" },
{ app="firewall", section="firewalling",
name="blacklist", filename="/etc/shorewall/blacklist",
descr="List ip addresses or names that should be denied all access to the firewall." },
{ app="firewall", section="nat",
name="masq", filename="/etc/shorewall/masq",
descr="Define dynamic Masquerading or DNAT tables" },
{ app="firewall", section="nat",
name="nat", filename="/etc/shorewall/nat",
descr="Define static Network Address Translation table" },
{ app="firewall", section="qos",
name="tos", filename="/etc/shorewall/tos",
descr="Specify type of service markers for packets traversing the firewall." },
{ app="firewall", section="qos",
name="tcrules", filename="/etc/shorewall/tcrules",
descr="Define traffic control rules." },
-- /* vim: set filetype=lua : */
|
