holm/shorewall_code
1
0
Fork 0
forked from extern/shorewall_code
Code Pull Requests Activity

Add a note about the SOURCE and DEST columns

Browse Source
This commit is contained in:
Tom Eastep 2010-12-24 14:03:55 -08:00
parent ce8f33b623
commit 29da130eef
2 changed files with 15 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
docs/Actions.xml
View File

@ -224,6 +224,9 @@ ACCEPT - - tcp 135,139,445
<para>When using Shorewall 4.4.16 or later, there are no restrictions <para>When using Shorewall 4.4.16 or later, there are no restrictions
regarding which targets can be used within your action.</para> regarding which targets can be used within your action.</para>
<para>The SOURCE and DEST columns in the action file may not include
zone names; those are given when the action is invoked.</para>
</section> </section>
<section> <section>
@ -578,7 +581,7 @@ add_rule $chainref, '-d 224.0.0.0/4 -j DROP';
Limit:none:SSHA,3,60 net $FW tcp 22</programlisting> Limit:none:SSHA,3,60 net $FW tcp 22</programlisting>
<para>Using Shorewall 4.4.16 or later, you can also invoke the action this <para>Using Shorewall 4.4.16 or later, you can also invoke the action this
way: </para> way:</para>
<programlisting>#ACTION SOURCE DEST PROTO DEST PORT(S) <programlisting>#ACTION SOURCE DEST PROTO DEST PORT(S)
Limit(SSHA,3,60):none net $FW tcp 22</programlisting> Limit(SSHA,3,60):none net $FW tcp 22</programlisting>

16
docs/LennyToSqueeze.xml
View File

@ -120,7 +120,7 @@
</listitem> </listitem>
</orderedlist> </orderedlist>
<para>In Squeeze, there are five packages:</para> <para>In Squeeze, there are six slightly different packages:</para>
<orderedlist> <orderedlist>
<listitem> <listitem>
@ -144,6 +144,12 @@
runs IPv6 firewall scripts.</para> runs IPv6 firewall scripts.</para>
</listitem> </listitem>
<listitem>
<para>shorewall-init — Allows the firewall to be closed before
interfaces are brought up and also allows the firewall to react to
interfaces coming up and going down.</para>
</listitem>
<listitem> <listitem>
<para>shorewall-doc — Documentation.</para> <para>shorewall-doc — Documentation.</para>
</listitem> </listitem>
@ -223,8 +229,8 @@
by Shorewall 4.4.x</emphasis></para> by Shorewall 4.4.x</emphasis></para>
<para>You should not be receiving this error if you are upgrading <para>You should not be receiving this error if you are upgrading
from Lenny since BRIDGING=Yes did not work in that from Lenny since BRIDGING=Yes did not work in that release
release<footnote> either<footnote>
<para>If you are upgrading from a release using a kernel <para>If you are upgrading from a release using a kernel
earlier than 2.6.20, then BRIDGING=Yes did work correctly with earlier than 2.6.20, then BRIDGING=Yes did work correctly with
Shorewall-shell.</para> Shorewall-shell.</para>
@ -424,8 +430,8 @@ loc Local The local LAN</programlisting>
# OPTIONS OPTIONS</programlisting> # OPTIONS OPTIONS</programlisting>
<para>You will need to add an entry for your firewall zone. The default <para>You will need to add an entry for your firewall zone. The default
name for the firewall zone is 'fw' but may have been overriden using name for the firewall zone is 'fw' but may have been overriden in your
<link linkend="FW">the FW option in old configuration using <link linkend="FW">the FW option in
<filename>shorewall.conf</filename></link>.</para> <filename>shorewall.conf</filename></link>.</para>
<programlisting>#ZONE TYPE OPTIONS IN OUT <programlisting>#ZONE TYPE OPTIONS IN OUT