diff --git a/Shorewall-core/lib.cli b/Shorewall-core/lib.cli index db8fccd5b..b61c77e28 100644 --- a/Shorewall-core/lib.cli +++ b/Shorewall-core/lib.cli @@ -1224,6 +1224,15 @@ show_command() { echo show_bl; ;; + opens) + [ $# -gt 1 ] && usage 1 + echo "$g_product $SHOREWALL_VERSION Temporarily opened connections at $g_hostname - $(date)" + + if chain_exists dynamic; then + $g_tool -t filter -L dynamic $g_ipt_options | head -n2 + $g_tool -t filter -L dynamic $g_ipt_options | fgrep ACCEPT | $output_filter + fi + ;; *) case "$g_program" in *-lite) @@ -3740,6 +3749,7 @@ usage() # $1 = exit status echo " [ show | list | ls ] [ -m ] log []" echo " [ show | list | ls ] [ -x ] mangle|nat|raw|rawpost" echo " [ show | list | ls ] nfacct" + echo " [ show | list | ls ] opens" echo " [ show | list | ls ] policies" echo " [ show | list | ls ] routing" echo " [ show | list | ls ] tc [ device ]" diff --git a/Shorewall-lite/manpages/shorewall-lite.xml b/Shorewall-lite/manpages/shorewall-lite.xml index 4624070e1..3b45b561c 100644 --- a/Shorewall-lite/manpages/shorewall-lite.xml +++ b/Shorewall-lite/manpages/shorewall-lite.xml @@ -1160,6 +1160,16 @@ + + opens + + + Added in Shorewall 4.5.8. Displays the iptables rules in + the 'dynamic' chain created through use of the open + command.. + + + policies diff --git a/Shorewall/lib.cli-std b/Shorewall/lib.cli-std index be6991b03..2ada5e8d7 100644 --- a/Shorewall/lib.cli-std +++ b/Shorewall/lib.cli-std @@ -1712,6 +1712,7 @@ usage() # $1 = exit status echo " [ show | list | ls ] marks" echo " [ show | list | ls ] [ -x ] mangle|nat|raw|rawpost|routing" echo " [ show | list | ls ] nfacct" + echo " [ show | list | ls ] opens" echo " [ show | list | ls ] policies" echo " [ show | list | ls ] routing" echo " [ show | list | ls ] tc [ device ]" diff --git a/Shorewall/manpages/shorewall.xml b/Shorewall/manpages/shorewall.xml index f87c1e5d7..b21f85e28 100644 --- a/Shorewall/manpages/shorewall.xml +++ b/Shorewall/manpages/shorewall.xml @@ -1847,6 +1847,16 @@ + + opens + + + Added in Shorewall 4.5.8. Displays the iptables rules in + the 'dynamic' chain created through use of the open + command.. + + + policies diff --git a/Shorewall6-lite/manpages/shorewall6-lite.xml b/Shorewall6-lite/manpages/shorewall6-lite.xml index bf75e4c5d..25a14255e 100644 --- a/Shorewall6-lite/manpages/shorewall6-lite.xml +++ b/Shorewall6-lite/manpages/shorewall6-lite.xml @@ -1171,6 +1171,16 @@ + + opens + + + Added in Shorewall 4.5.8. Displays the iptables rules in + the 'dynamic' chain created through use of the open + command.. + + + nat diff --git a/Shorewall6/manpages/shorewall6.xml b/Shorewall6/manpages/shorewall6.xml index bf4916055..706764729 100644 --- a/Shorewall6/manpages/shorewall6.xml +++ b/Shorewall6/manpages/shorewall6.xml @@ -1728,6 +1728,16 @@ + + opens + + + Added in Shorewall 4.5.8. Displays the iptables rules in + the 'dynamic' chain created through use of the open + command.. + + + policies