extern/shorewall_code
1
0
Fork 1
mirror of https://gitlab.com/shorewall/code.git synced 2024-11-23 08:03:11 +01:00
Code Issues Packages Projects Releases Wiki Activity

New syntax convention in policy manpage

Browse Source 
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@4981 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
This commit is contained in:
teastep 2006-11-22 23:29:21 +00:00
parent 1a29390418
commit 5e5a4ea716
2 changed files with 33 additions and 11 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
manpages/shorewall-netmap.xml
View File

@ -33,7 +33,9 @@
<variablelist> <variablelist>
<varlistentry> <varlistentry>
<term><emphasis role="bold">TYPE</emphasis></term> <term><emphasis role="bold">TYPE</emphasis><emphasis
role="bold">DNAT</emphasis>|<emphasis
role="bold">SNAT</emphasis></term>
<listitem> <listitem>
<para>Must be DNAT or SNAT.</para> <para>Must be DNAT or SNAT.</para>
@ -49,7 +51,8 @@
</varlistentry> </varlistentry>
<varlistentry> <varlistentry>
<term><emphasis role="bold">NET1</emphasis></term> <term><emphasis role="bold">NET1</emphasis>
<emphasis>network-address</emphasis></term>
<listitem> <listitem>
<para>Network in CIDR format (e.g., 192.168.1.0/24).</para> <para>Network in CIDR format (e.g., 192.168.1.0/24).</para>
@ -57,7 +60,8 @@
</varlistentry> </varlistentry>
<varlistentry> <varlistentry>
<term><emphasis role="bold">INTERFACE</emphasis></term> <term><emphasis role="bold">INTERFACE</emphasis>
<emphasis>interface</emphasis></term>
<listitem> <listitem>
<para>The name of a network interface. The interface must be defined <para>The name of a network interface. The interface must be defined
@ -66,7 +70,8 @@
</varlistentry> </varlistentry>
<varlistentry> <varlistentry>
<term><emphasis role="bold">NET2</emphasis></term> <term><emphasis role="bold">NET2</emphasis>
<emphasis>network-address</emphasis></term>
<listitem> <listitem>
<para>Network in CIDR format</para> <para>Network in CIDR format</para>

31
manpages/shorewall-policy.xml
View File

@ -52,7 +52,9 @@
<variablelist> <variablelist>
<varlistentry> <varlistentry>
<term><emphasis role="bold">SOURCE</emphasis></term> <term><emphasis role="bold">SOURCE</emphasis>
<emphasis>zone</emphasis>|<emphasis
role="bold">$FW</emphasis>|<emphasis role="bold">all</emphasis></term>
<listitem> <listitem>
<para>Source zone. Must be the name of a zone defined in <para>Source zone. Must be the name of a zone defined in
@ -61,7 +63,9 @@
</varlistentry> </varlistentry>
<varlistentry> <varlistentry>
<term><emphasis role="bold">DEST</emphasis></term> <term><emphasis role="bold">DEST</emphasis>
<emphasis>zone</emphasis>|<emphasis
role="bold">$FW</emphasis>|<emphasis role="bold">all</emphasis></term>
<listitem> <listitem>
<para>Destination zone. Must be the name of a zone defined in <para>Destination zone. Must be the name of a zone defined in
@ -70,7 +74,14 @@
</varlistentry> </varlistentry>
<varlistentry> <varlistentry>
<term><emphasis role="bold">POLICY</emphasis></term> <term><emphasis role="bold">POLICY</emphasis> — {<emphasis
role="bold">ACCEPT</emphasis>|<emphasis
role="bold">DROP</emphasis>|<emphasis
role="bold">REJECT</emphasis>|<emphasis
role="bold">CONTINUE</emphasis>|<emphasis
role="bold">NONE</emphasis>}[<emphasis
role="bold">:</emphasis>{<emphasis>default-action-or-macro</emphasis>|<emphasis
role="bold">None</emphasis>}]</term>
<listitem> <listitem>
<para>Policy if no match from the rules file is found. Must be <para>Policy if no match from the rules file is found. Must be
@ -155,7 +166,9 @@
</varlistentry> </varlistentry>
<varlistentry> <varlistentry>
<term><emphasis role="bold">LOG LEVEL</emphasis> (Optional)</term> <term><emphasis role="bold">LOG LEVEL</emphasis> (Optional) —
[<emphasis>log-level</emphasis>|<emphasis
role="bold">ULOG</emphasis>]</term>
<listitem> <listitem>
<para>If supplied, each connection handled under the default POLICY <para>If supplied, each connection handled under the default POLICY
@ -173,11 +186,15 @@
</varlistentry> </varlistentry>
<varlistentry> <varlistentry>
<term><emphasis role="bold">BURST:LIMIT</emphasis></term> <term><emphasis role="bold">BURST:LIMIT</emphasis>
<emphasis>rate</emphasis><emphasis role="bold">/</emphasis>{<emphasis
role="bold">second</emphasis>|<emphasis
role="bold">minute</emphasis>}:<emphasis>burst</emphasis></term>
<listitem> <listitem>
<para>If passed, specifies the maximum TCP connection rate and the <para>If passed, specifies the maximum TCP connection
size of an acceptable burst. If not specified, TCP connections are <emphasis>rate</emphasis> and the size of an acceptable
<emphasis>burst</emphasis>. If not specified, TCP connections are
not limited.</para> not limited.</para>
</listitem> </listitem>
</varlistentry> </varlistentry>