extern/shorewall_code
1
0
Fork 1
mirror of https://gitlab.com/shorewall/code.git synced 2024-12-16 03:10:39 +01:00
Code Issues Packages Projects Releases Wiki Activity

fixed quotes, add CVS Id

Browse Source 
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@993 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
This commit is contained in:
mhnoyes 2003-12-28 16:08:35 +00:00
parent 813d2969ef
commit 8e62e0fa57
1 changed files with 26 additions and 26 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

40
Shorewall-docs/configuration_file_basics.xml
View File

@ -67,16 +67,16 @@
- defines IPSEC, GRE and IPIP tunnels with end-points on the firewall - defines IPSEC, GRE and IPIP tunnels with end-points on the firewall
system.</para></listitem><listitem><para>/etc/shorewall/blacklist - lists system.</para></listitem><listitem><para>/etc/shorewall/blacklist - lists
blacklisted IP/subnet/MAC addresses.</para></listitem><listitem><para>/etc/shorewall/init blacklisted IP/subnet/MAC addresses.</para></listitem><listitem><para>/etc/shorewall/init
- commands that you wish to execute at the beginning of a &#34;shorewall - commands that you wish to execute at the beginning of a <quote>shorewall
start&#34; or &#34;shorewall restart&#34;.</para></listitem><listitem><para>/etc/shorewall/start start</quote> or <quote>shorewall restart</quote>.</para></listitem><listitem><para>/etc/shorewall/start
- commands that you wish to execute at the completion of a &#34;shorewall - commands that you wish to execute at the completion of a <quote>shorewall
start&#34; or &#34;shorewall restart&#34;</para></listitem><listitem><para>/etc/shorewall/stop start</quote> or <quote>shorewall restart</quote></para></listitem><listitem><para>/etc/shorewall/stop
- commands that you wish to execute at the beginning of a &#34;shorewall - commands that you wish to execute at the beginning of a <quote>shorewall
stop&#34;.</para></listitem><listitem><para>/etc/shorewall/stopped - stop</quote>.</para></listitem><listitem><para>/etc/shorewall/stopped -
commands that you wish to execute at the completion of a &#34;shorewall commands that you wish to execute at the completion of a <quote>shorewall
stop&#34;.</para></listitem><listitem><para>/etc/shorewall/ecn - disable stop</quote>.</para></listitem><listitem><para>/etc/shorewall/ecn -
Explicit Congestion Notification (ECN - RFC 3168) to remote hosts or disable Explicit Congestion Notification (ECN - RFC 3168) to remote hosts
networks.</para></listitem><listitem><para>/etc/shorewall/accounting - or networks.</para></listitem><listitem><para>/etc/shorewall/accounting -
define IP traffic accounting rules</para></listitem><listitem><para>/etc/shorewall/usersets define IP traffic accounting rules</para></listitem><listitem><para>/etc/shorewall/usersets
and /etc/shorewall/users - define sets of users/groups with similar access and /etc/shorewall/users - define sets of users/groups with similar access
rights</para></listitem><listitem><para>/etc/shorewall/actions and rights</para></listitem><listitem><para>/etc/shorewall/actions and
@ -88,9 +88,9 @@
<title>Comments</title> <title>Comments</title>
<para>You may place comments in configuration files by making the first <para>You may place comments in configuration files by making the first
non-whitespace character a pound sign (&#34;#&#34;). You may also place non-whitespace character a pound sign (<quote>#</quote>). You may also
comments at the end of any line, again by delimiting the comment from the place comments at the end of any line, again by delimiting the comment
rest of the line with a pound sign.</para> from the rest of the line with a pound sign.</para>
<example> <example>
<title>Comments in a Configuration File</title> <title>Comments in a Configuration File</title>
@ -104,7 +104,7 @@ ACCEPT net fw tcp www #This is an end-of-line comment</program
<title>Line Continuation</title> <title>Line Continuation</title>
<para>You may continue lines in the configuration files using the usual <para>You may continue lines in the configuration files using the usual
backslash (&#34;\&#34;) followed immediately by a new line character.</para> backslash (<quote>\</quote>) followed immediately by a new line character.</para>
<example> <example>
<title>Line Continuation</title> <title>Line Continuation</title>
@ -285,9 +285,9 @@ smtp,www,pop3,imap #Services running on the firewall</programlisting>
<title>Complementing an Address or Subnet</title> <title>Complementing an Address or Subnet</title>
<para>Where specifying an IP address, a subnet or an interface, you can <para>Where specifying an IP address, a subnet or an interface, you can
precede the item with &#34;!&#34; to specify the complement of the item. precede the item with <quote>!</quote> to specify the complement of the
For example, !192.168.1.4 means &#34;any host but 192.168.1.4&#34;. There item. For example, !192.168.1.4 means <quote>any host but 192.168.1.4</quote>.
must be no white space following the &#34;!&#34;.</para> There must be no white space following the <quote>!</quote>.</para>
</section> </section>
<section id="Lists"> <section id="Lists">
@ -438,9 +438,9 @@ role="bold">02:00:08:E3:FA:55</emphasis>
<para>Because Shorewall uses colons as a separator for address fields, <para>Because Shorewall uses colons as a separator for address fields,
Shorewall requires MAC addresses to be written in another way. In Shorewall requires MAC addresses to be written in another way. In
Shorewall, MAC addresses begin with a tilde (&#34;~&#34;) and consist of 6 Shorewall, MAC addresses begin with a tilde (<quote>~</quote>) and consist
hex numbers separated by hyphens. In Shorewall, the MAC address in the of 6 hex numbers separated by hyphens. In Shorewall, the MAC address in
example above would be written &#34;~02-00-08-E3-FA-55&#34;.</para> the example above would be written <quote>~02-00-08-E3-FA-55</quote>.</para>
<note> <note>
<para>It is not necessary to use the special Shorewall notation in the <para>It is not necessary to use the special Shorewall notation in the