From 5f7af88022ea0e05bd7f0174d90b0c1060be190a Mon Sep 17 00:00:00 2001 From: teastep Date: Wed, 9 Aug 2006 15:00:58 +0000 Subject: [PATCH] Update compiled program doc to reflect shorecap/show -f capabilities differences git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@4330 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb --- docs/CompiledPrograms.xml | 16 ++++++++++++++-- 1 file changed, 14 insertions(+), 2 deletions(-) diff --git a/docs/CompiledPrograms.xml b/docs/CompiledPrograms.xml index 5159593d4..06bda484a 100644 --- a/docs/CompiledPrograms.xml +++ b/docs/CompiledPrograms.xml @@ -219,7 +219,7 @@ On each firewall system, you run: - /sbin/shorewall-lite show -f capabilities > capabilities + /usr/share/shorewall-lite/shorecap > capabilities scp capabilities <admin system>:<this system's config dir> If you are running Debian or one of its derivatives like Ubuntu @@ -417,7 +417,7 @@ On the firewall system: - /sbin/shorewall-lite show -f capabilities > capabilities + /usr/share/shorewall-lite/shorecap > capabilities scp capabilities <admin system>:<this system's config dir> @@ -485,6 +485,15 @@ -e), copies that file to the remote system via scp and restarts Shorewall Lite on the remote system via ssh. + + + If the kernel/iptables configuration on the firewall later + changes and you need to create a new capabilities file, do the + following: + + /sbin/shorewall-lite show -f capabilities > capabilities +scp capabilities <admin system>:<this system's config dir> + @@ -574,6 +583,9 @@ MANGLE_FORWARD # Mangle table has FORWARD chain<program> [ -q ] [ -v ] [ -n ] clear + <program> [ -q ] [ -v ] [ -n ] + reset + <program> [ -q ] [ -v ] [ -n ] restart