mirror of
https://gitlab.com/shorewall/code.git
synced 2024-12-22 14:20:40 +01:00
Documentation cleanup
Signed-off-by: Tom Eastep <teastep@shorewall.net>
This commit is contained in:
parent
e14d92c5ac
commit
4a014d4884
@ -250,7 +250,7 @@
|
|||||||
|
|
||||||
<listitem>
|
<listitem>
|
||||||
<para>At any time, the Netfilter team could begin generating errors
|
<para>At any time, the Netfilter team could begin generating errors
|
||||||
when loading those same rules.</para>
|
when loading those same rules (that has happened).</para>
|
||||||
</listitem>
|
</listitem>
|
||||||
|
|
||||||
<listitem>
|
<listitem>
|
||||||
|
@ -20,6 +20,8 @@
|
|||||||
<copyright>
|
<copyright>
|
||||||
<year>2009</year>
|
<year>2009</year>
|
||||||
|
|
||||||
|
<year>2013</year>
|
||||||
|
|
||||||
<holder>Thomas M. Eastep</holder>
|
<holder>Thomas M. Eastep</holder>
|
||||||
</copyright>
|
</copyright>
|
||||||
|
|
||||||
@ -45,18 +47,18 @@
|
|||||||
|
|
||||||
<para>Shorewall provides basic support for defining such zones. This
|
<para>Shorewall provides basic support for defining such zones. This
|
||||||
support is based on <ulink
|
support is based on <ulink
|
||||||
url="http://ipset.netfilter.org/">ipset</ulink>. As of this writing, ipset
|
url="http://ipset.netfilter.org/">ipset</ulink>. Most current
|
||||||
is not included in the standard kernel distribution; so to use dynamic
|
distributions have ipset, but you may need to install the <ulink
|
||||||
zones, you must be running kernel 2.6.20 or later and have installed the
|
url="http://xtables-addons.sourceforge.net/">xtables-addons</ulink>.
|
||||||
<ulink
|
</para>
|
||||||
url="http://xtables-addons.sourceforge.net/">xtables-addons</ulink>.</para>
|
|
||||||
</section>
|
</section>
|
||||||
|
|
||||||
<section id="xtables-addons">
|
<section id="xtables-addons">
|
||||||
<title>Installing xtables-addons</title>
|
<title>Installing xtables-addons</title>
|
||||||
|
|
||||||
<para>The xtables-addons are fairly easy to install. You do not need to
|
<para>If your distribution does not have an xtables-addons package, the
|
||||||
recompile your kernel.</para>
|
xtables-addons are fairly easy to install. You do not need to recompile
|
||||||
|
your kernel.</para>
|
||||||
|
|
||||||
<para><trademark>Debian</trademark> users can find xtables-addons-common
|
<para><trademark>Debian</trademark> users can find xtables-addons-common
|
||||||
and xtables-addons-source packages in <firstterm>testing</firstterm>. The
|
and xtables-addons-source packages in <firstterm>testing</firstterm>. The
|
||||||
|
@ -860,9 +860,9 @@ iface veth0 inet static
|
|||||||
</listitem>
|
</listitem>
|
||||||
|
|
||||||
<listitem>
|
<listitem>
|
||||||
<para>It allows up to 8 <replaceable>marked</replaceable> zones
|
<para>It allows up to 7 <replaceable>marked</replaceable> zones (2**3
|
||||||
(2**3). Zones are marked unless they have <option>nomark</option> in
|
- 1). Zones are marked unless they have <option>nomark</option> in the
|
||||||
the OPTIONS column of their entry in <ulink
|
OPTIONS column of their entry in <ulink
|
||||||
url="manpages/shorewall-zones.html">shorewall-zones </ulink>(5).
|
url="manpages/shorewall-zones.html">shorewall-zones </ulink>(5).
|
||||||
Packets originating in a marked zone have a mark assigned
|
Packets originating in a marked zone have a mark assigned
|
||||||
automatically by Shorewall.</para>
|
automatically by Shorewall.</para>
|
||||||
|
Loading…
Reference in New Issue
Block a user