From 6ee356877f7d7db3a2322fb68ae9243cfee295f1 Mon Sep 17 00:00:00 2001 From: judas_iscariote Date: Thu, 27 Jul 2006 03:28:19 +0000 Subject: [PATCH] document more macros and services git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@4283 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb --- docs/ports.xml | 92 +++++++++++++++++++++++++++++++++++++++++++------- 1 file changed, 79 insertions(+), 13 deletions(-) diff --git a/docs/ports.xml b/docs/ports.xml index 47f92bc59..9a3135cd2 100644 --- a/docs/ports.xml +++ b/docs/ports.xml @@ -13,10 +13,14 @@ + + Cristian Rodriguez R. + + - 2001-2006 + 2001- Thomas M. Eastep @@ -202,13 +206,18 @@ ICQ/ACCEPT <source> net IMAP - When accessing you mail from the internet,use When accessing your mail from the internet,use only IMAP over - SSL + SSL. + + + + This information is valid only for Shorewall 3.2 or later. #ACTION SOURCE DESTINATION PROTO DEST PORT(S) -IMAP/ACCEPT <source> <destination> #Secure & Unsecure IMAP +IMAP/ACCEPT <source> <destination> # Unsecure IMAP +IMAPS/ACCEPT <source> <destination> # IMAP over SSL.
@@ -226,6 +235,18 @@ ACCEPT <destination> <source>here.
+
+ LDAP + + + This information is valid only for Shorewall 3.2 or later. + + + #ACTION SOURCE DESTINATION PROTO DEST PORT(S) +LDAP/ACCEPT <source> <destination> #Insecure LDAP +LDAPS/ACCEPT <source> <destination> # LDAP over SSL +
+
NFS @@ -252,17 +273,20 @@ PCA/ACCEPT <source> <destination>
- Pop3 + POP3 If Possible , Avoid this protocol , use IMAP instead. - TCP Port 110 (Secure Pop3 is TCP Port 995) + + This information is valid only for Shorewall 3.2 or later + #ACTION SOURCE DESTINATION PROTO DEST PORT(S) -POP3/ACCEPT <source> <destination> # Secure & Unsecure Pop3 +POP3/ACCEPT <source> <destination> # Secure +POP3S/ACCEPT <source> <destination> #Unsecure Pop3
@@ -298,7 +322,8 @@ SSH/ACCEPT <source> <destination>
- SMB/NMB (Samba/Windows Browsing/File Sharing) + SMB/NMB (Samba/<trademark>Windows</trademark> Browsing/File + Sharing) #ACTION SOURCE DESTINATION PROTO DEST PORT(S) SMB/ACCEPT <source> <destination> @@ -310,9 +335,13 @@ SMB/ACCEPT <destination> <source>
SMTP - #ACTION SOURCE DESTINATION PROTO DEST PORT(S) -SMTP/ACCEPT<source> <destination> #Insecure SMTP -ACCEPT <source> <destination> tcp 465 #SMTP over SSL (TLS) + + This information is valid only for Shorewall 3.2 or later. + + + #ACTION SOURCE DESTINATION PROTO DEST PORT(S) +SMTP/ACCEPT <source> <destination> #Insecure SMTP +SMTPS/ACCEPT <source> <destination> #SMTP over SSL (TLS)
@@ -322,9 +351,30 @@ ACCEPT <source> <destination><source> <destination>
+
+ SVN + + + This information is valid only for Shorewall 3.2 or later. + + + + This rule is for Subversion running in svnserve mode only. + + + #ACTION SOURCE DESTINATION PROTO DEST PORT(S) +SVN/ACCEPT <source> <destination> +
+
Telnet + + The telnet protocol is very + insecure, don't use it. + + #ACTION SOURCE DESTINATION PROTO DEST PORT(S) Telnet/ACCEPT <source> <destination>
@@ -369,7 +419,8 @@ ACCEPT fw ... Usenet (NNTP) #ACTION SOURCE DESTINATION PROTO DEST PORT(S) -NNTP/ACCEPT <source> <destination> +NNTP/ACCEPT <source> <destination> +NNTPS/ACCEPT <source> <destination> # secure NNTP TCP Port 119
@@ -409,8 +460,13 @@ VNCL/ACCEPT <source> <destination&g
Web Access + + This information is valid for Shorewall 3.2 or later. + + #ACTION SOURCE DESTINATION PROTO DEST PORT(S) -Web/ACCEPT <source> <destination> #Insecure HTTP& Secure HTTP +HTTP/ACCEPT <source> <destination> #Insecure HTTP +HTTPS/ACCEPT <source> <destination> #Secure HTTP
@@ -454,6 +510,16 @@ ACCEPT <apps> <chooser Revision History + + 1.18 + + 2006-07-18 + + CR + + Updated for Shorewall 3.2 + + 1.18