From 71d9a036973b3a4434ca6452a28adb5e8785f69d Mon Sep 17 00:00:00 2001 From: Tom Eastep Date: Sun, 5 Mar 2017 14:29:57 -0800 Subject: [PATCH] Update shorewall[6]-rules. Signed-off-by: Tom Eastep --- Shorewall/manpages/shorewall-rules.xml | 13 ++++++------- Shorewall6/manpages/shorewall6-rules.xml | 8 ++++---- 2 files changed, 10 insertions(+), 11 deletions(-) diff --git a/Shorewall/manpages/shorewall-rules.xml b/Shorewall/manpages/shorewall-rules.xml index 91eef335e..cc64a0f9e 100644 --- a/Shorewall/manpages/shorewall-rules.xml +++ b/Shorewall/manpages/shorewall-rules.xml @@ -66,7 +66,7 @@ this section. The only ACTIONs allowed in this section are ACCEPT, DROP, - REJECT, LOG and QUEUE + REJECT, LOG, NFQUEUE and QUEUE There is an implicit ACCEPT rule inserted at the end of this section. @@ -81,7 +81,7 @@ section. The only ACTIONs allowed in this section are ACCEPT, DROP, - REJECT, LOG and QUEUE + REJECT, LOG, NFQUEUE and QUEUE There is an implicit rule added at the end of this section that invokes the RELATED_DISPOSITION ( The only Actions allowed in this section are ACCEPT, DROP, - REJECT, LOG and QUEUE. + REJECT, LOG, NFQUEUE and QUEUE. There is an implicit rule added at the end of this section that invokes the INVALID_DISPOSITION ( The only Actions allowed in this section are ACCEPT, DROP, - REJECT, LOG and QUEUE. + REJECT, LOG, NFQUEUE and QUEUE. There is an implicit rule added at the end of this section that invokes the UNTRACKED_DISPOSITION (ESTABLISHED and RELATED sections and place all of your - non-blacklisting rules in the NEW section (That's after the line that - reads ?SECTION NEW'). + role="bold">RELATED sections and place all of your rules in + the NEW section (That's after the line that reads ?SECTION NEW'). diff --git a/Shorewall6/manpages/shorewall6-rules.xml b/Shorewall6/manpages/shorewall6-rules.xml index c33573431..439854594 100644 --- a/Shorewall6/manpages/shorewall6-rules.xml +++ b/Shorewall6/manpages/shorewall6-rules.xml @@ -59,7 +59,7 @@ this section. The only ACTIONs allowed in this section are ACCEPT, DROP, - REJECT, LOG and QUEUE + REJECT, LOG, NFQUEUE and QUEUE There is an implicit ACCEPT rule inserted at the end of this section. @@ -74,7 +74,7 @@ section. The only ACTIONs allowed in this section are ACCEPT, DROP, - REJECT, LOG and QUEUE + REJECT, LOG, NFQUEUE and QUEUE There is an implicit rule added at the end of this section that invokes the RELATED_DISPOSITION ( The only Actions allowed in this section are ACCEPT, DROP, - REJECT, LOG and QUEUE. + REJECT, LOG, NFQUEUE and QUEUE. There is an implicit rule added at the end of this section that invokes the INVALID_DISPOSITION ( The only Actions allowed in this section are ACCEPT, DROP, - REJECT, LOG and QUEUE. + REJECT, LOG, NFQUEUE and QUEUE. There is an implicit rule added at the end of this section that invokes the UNTRACKED_DISPOSITION (