From 4cdf2fb5f4756ecd4eceaa52b3d4db7f250cfc3c Mon Sep 17 00:00:00 2001 From: teastep Date: Sun, 8 Jul 2007 16:11:28 +0000 Subject: [PATCH] Update documentation to reflect change in -f option git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@6806 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb --- docs/starting_and_stopping_shorewall.xml | 38 ++++++++++++++++-------- 1 file changed, 25 insertions(+), 13 deletions(-) diff --git a/docs/starting_and_stopping_shorewall.xml b/docs/starting_and_stopping_shorewall.xml index 54144b7c2..e8a5abf14 100644 --- a/docs/starting_and_stopping_shorewall.xml +++ b/docs/starting_and_stopping_shorewall.xml @@ -244,8 +244,8 @@ That command creates the default restore script, /var/lib/shorewall/restore. The default may be changed using the RESTOREFILE option in /etc/shorewall/shorewall.conf. A - different file name may also be specified in the save + url="manpages/shorewall.conf.html">/etc/shorewall/shorewall.conf. + A different file name may also be specified in the save command: shorewall save <filename> @@ -264,15 +264,26 @@ - Bootup is faster. The -f option of the start command (e.g., + Bootup is faster (although with Shorewall-perl, the difference + is minimal). The -f option of the start command (e.g., shorewall -f start) causes Shorewall to look for - the default restore script and if it exists, the script is run. This - is much faster than starting Shorewall using the normal mechanism of - reading the configuration files and running - iptables dozens or even hundreds of times. - By default, /etc/init.d/shorewall + the default restore script and if it exists, the script is run. When + using Shorewall-shell, this is much faster than starting Shorewall + using the normal mechanism of reading the configuration files and + running iptables dozens or even hundreds of + times. + + Under Shorewall versions < 4.0.0, + /etc/init.d/shorewall (/etc/rc.d/rc.firewall) uses the -f option when - it is processing a request to start Shorewall. + it is processing a request to start Shorewall. Beginning with + Shorewall 4.0.0, the default is to not use -f. If you wish to change + the default, you must set the OPTIONS shell variable in either + /etc/default/shorewall or + /etc/sysconfig/shorewall (if your distribution + provides neither of these files, you must create one or the other). + For example, to continue to use -f under Shorewall 4.0.0 and later, + you would have:OPTIONS="-f" @@ -464,9 +475,9 @@ Reduces the verbosity level (see VERBOSITY setting in shorewall.conf). May be - repeated (e.g., "-qq") with each instance reducing the verbosity - level by one. + url="manpages/shorewall.conf.htmlig">shorewall.conf). May + be repeated (e.g., "-qq") with each instance reducing the + verbosity level by one. @@ -475,7 +486,8 @@ Increases the verbosity level (see VERBOSITY setting in - shorewall.conf). May + shorewall.conf). May be repeated (e.g., "-qq") with each instance increasing the verbosity level by one.