Update Shorewall6 default-action defaults

Signed-off-by: Tom Eastep <teastep@shorewall.net>

Shorewall6/Samples6/Universal/params

@@ -0,0 +1,15 @@
+#
+# Shorewall - Sample Params File for universal configuration.
+# Copyright (C) 2006-2017 by the Shorewall Team
+#
+# This library is free software; you can redistribute it and/or
+# modify it under the terms of the GNU Lesser General Public
+# License as published by the Free Software Foundation; either
+# version 2.1 of the License, or (at your option) any later version.
+#
+# See the file README.txt for further details.
+#------------------------------------------------------------------------------------------------------------
+# For information on entries in this file, type "man shorewall-params"
+######################################################################################################################################################################################################
+
+LOG=info # Change this to change the way in which packets are logged.

Shorewall6/Samples6/Universal/shorewall6.conf

@@ -104,12 +104,12 @@ TC=
 #		D E F A U L T   A C T I O N S / M A C R O S
 ###############################################################################
 
-ACCEPT_DEFAULT="none"
-BLACKLIST_DEFAULT="Drop"
-DROP_DEFAULT="Drop"
-NFQUEUE_DEFAULT="none"
-QUEUE_DEFAULT="none"
-REJECT_DEFAULT="Reject"
+ACCEPT_DEFAULT=none
+BLACKLIST_DEFAULT=AllowICMPs,dropBcasts,dropNotSyn:$LOG
+DROP_DEFAULT=AllowICMPs,dropBcasts,dropNotSyn:$LOG
+NFQUEUE_DEFAULT=none
+QUEUE_DEFAULT=none
+REJECT_DEFAULT=AllowICMPs,dropBcasts
 
 ###############################################################################
 #                        R S H / R C P  C O M M A N D S

Shorewall6/Samples6/one-interface/params

@@ -0,0 +1,15 @@
+#
+# Shorewall - Sample Params File for one-interface configuration.
+# Copyright (C) 2006-2017 by the Shorewall Team
+#
+# This library is free software; you can redistribute it and/or
+# modify it under the terms of the GNU Lesser General Public
+# License as published by the Free Software Foundation; either
+# version 2.1 of the License, or (at your option) any later version.
+#
+# See the file README.txt for further details.
+#------------------------------------------------------------------------------------------------------------
+# For information on entries in this file, type "man shorewall-params"
+######################################################################################################################################################################################################
+
+LOG=info # Change this to change the way in which packets are logged.

Shorewall6/Samples6/one-interface/shorewall6.conf

@@ -105,12 +105,12 @@ TC=
 #		D E F A U L T   A C T I O N S / M A C R O S
 ###############################################################################
 
-ACCEPT_DEFAULT="none"
-BLACKLIST_DEFAULT="Drop"
-DROP_DEFAULT="Drop"
-NFQUEUE_DEFAULT="none"
-QUEUE_DEFAULT="none"
-REJECT_DEFAULT="Reject"
+ACCEPT_DEFAULT=none
+BLACKLIST_DEFAULT=AllowICMPs,dropBcasts,dropNotSyn:$LOG
+DROP_DEFAULT=AllowICMPs,dropBcasts,dropNotSyn:$LOG
+NFQUEUE_DEFAULT=none
+QUEUE_DEFAULT=none
+REJECT_DEFAULT=AllowICMPs,dropBcasts
 
 ###############################################################################
 #                        R S H / R C P  C O M M A N D S

Shorewall6/Samples6/three-interfaces/params

@@ -0,0 +1,15 @@
+#
+# Shorewall - Sample Params File for three-interface configuration.
+# Copyright (C) 2006-2017 by the Shorewall Team
+#
+# This library is free software; you can redistribute it and/or
+# modify it under the terms of the GNU Lesser General Public
+# License as published by the Free Software Foundation; either
+# version 2.1 of the License, or (at your option) any later version.
+#
+# See the file README.txt for further details.
+#------------------------------------------------------------------------------------------------------------
+# For information on entries in this file, type "man shorewall-params"
+######################################################################################################################################################################################################
+
+LOG=info # Change this to change the way in which packets are logged.

Shorewall6/Samples6/three-interfaces/shorewall6.conf

@@ -104,12 +104,12 @@ TC=
 #		D E F A U L T   A C T I O N S / M A C R O S
 ###############################################################################
 
-ACCEPT_DEFAULT="none"
-BLACKLIST_DEFAULT="Drop"
-DROP_DEFAULT="Drop"
-NFQUEUE_DEFAULT="none"
-QUEUE_DEFAULT="none"
-REJECT_DEFAULT="Reject"
+ACCEPT_DEFAULT=none
+BLACKLIST_DEFAULT=AllowICMPs,dropBcasts,dropNotSyn:$LOG
+DROP_DEFAULT=AllowICMPs,dropBcasts,dropNotSyn:$LOG
+NFQUEUE_DEFAULT=none
+QUEUE_DEFAULT=none
+REJECT_DEFAULT=AllowICMPs,dropBcasts
 
 ###############################################################################
 #                        R S H / R C P  C O M M A N D S

Shorewall6/Samples6/two-interfaces/params

@@ -0,0 +1,15 @@
+#
+# Shorewall - Sample Params File for two-interface configuration.
+# Copyright (C) 2006-2017 by the Shorewall Team
+#
+# This library is free software; you can redistribute it and/or
+# modify it under the terms of the GNU Lesser General Public
+# License as published by the Free Software Foundation; either
+# version 2.1 of the License, or (at your option) any later version.
+#
+# See the file README.txt for further details.
+#------------------------------------------------------------------------------------------------------------
+# For information on entries in this file, type "man shorewall-params"
+######################################################################################################################################################################################################
+
+LOG=info # Change this to change the way in which packets are logged.

Shorewall6/Samples6/two-interfaces/shorewall6.conf

@@ -104,12 +104,12 @@ TC=
 #		D E F A U L T   A C T I O N S / M A C R O S
 ###############################################################################
 
-ACCEPT_DEFAULT="none"
-BLACKLIST_DEFAULT="Drop"
-DROP_DEFAULT="Drop"
-NFQUEUE_DEFAULT="none"
-QUEUE_DEFAULT="none"
-REJECT_DEFAULT="Reject"
+ACCEPT_DEFAULT=none
+BLACKLIST_DEFAULT=AllowICMPs,dropBcasts,dropNotSyn:$LOG
+DROP_DEFAULT=AllowICMPs,dropBcasts,dropNotSyn:$LOG
+NFQUEUE_DEFAULT=none
+QUEUE_DEFAULT=none
+REJECT_DEFAULT=AllowICMPs,dropBcasts
 
 ###############################################################################
 #                        R S H / R C P  C O M M A N D S

Shorewall6/configfiles/params

@@ -21,3 +21,4 @@
 #	net	eth0		-	dhcp,nosmurfs
 #
 ###############################################################################
+LOG=info # Default Log Level

Shorewall6/configfiles/shorewall6.conf

@@ -2,7 +2,7 @@
 #
 #  Shorewall Version 5 -- /etc/shorewall6/shorewall6.conf
 #
-#  For information about the settings in this file, type "man shorewall6.conf"
+#  For $LOGrmation about the settings in this file, type "man shorewall6.conf"
 #
 #  Manpage also online at
 #  http://www.shorewall.net/manpages6/shorewall6.conf.html
@@ -52,19 +52,19 @@ LOGLIMIT="s:1/sec:10"
 
 LOGTAGONLY=No
 
-MACLIST_LOG_LEVEL=info
+MACLIST_LOG_LEVEL=$LOG
 
 RELATED_LOG_LEVEL=
 
-RPFILTER_LOG_LEVEL=info
+RPFILTER_LOG_LEVEL=$LOG
 
-SFILTER_LOG_LEVEL=info
+SFILTER_LOG_LEVEL=$LOG
 
-SMURF_LOG_LEVEL=info
+SMURF_LOG_LEVEL=$LOG
 
 STARTUP_LOG=/var/log/shorewall6-init.log
 
-TCP_FLAGS_LOG_LEVEL=info
+TCP_FLAGS_LOG_LEVEL=$LOG
 
 UNTRACKED_LOG_LEVEL=
 
@@ -105,11 +105,11 @@ TC=
 ###############################################################################
 
 ACCEPT_DEFAULT=none
-BLACKLIST_DEFAULT=Drop
-DROP_DEFAULT=Drop
+BLACKLIST_DEFAULT=AllowICMPs,dropBcasts,dropNotSyn:$LOG
+DROP_DEFAULT=AllowICMPs,dropBcasts,dropNotSyn:$LOG
 NFQUEUE_DEFAULT=none
 QUEUE_DEFAULT=none
-REJECT_DEFAULT=Reject
+REJECT_DEFAULT=AllowICMPs,dropBcasts
 
 ###############################################################################
 #			 R S H / R C P	C O M M A N D S