forked from extern/shorewall_code
Eliminate mention of the GATEWAY interface column in the samples
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2670 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
This commit is contained in:
teastep
parent
6c37f6ef25
commit
735741b809
@ -201,12 +201,6 @@
|
|||||||
# significant but the list should have no embedded white
|
# significant but the list should have no embedded white
|
||||||
# space.
|
# space.
|
||||||
#
|
#
|
||||||
# GATEWAY This column is only meaningful if the 'default' OPTION
|
|
||||||
# is given -- it is ignored otherwise. You may specify
|
|
||||||
# the default gateway IP address for this interface here
|
|
||||||
# and Shorewall will use that IP address rather than any
|
|
||||||
# that it finds in the main routing table.
|
|
||||||
#
|
|
||||||
# Example 1: Suppose you have eth0 connected to a DSL modem and
|
# Example 1: Suppose you have eth0 connected to a DSL modem and
|
||||||
# eth1 connected to your local network and that your
|
# eth1 connected to your local network and that your
|
||||||
# local subnet is 192.168.1.0/24. The interface gets
|
# local subnet is 192.168.1.0/24. The interface gets
|
||||||
@ -236,6 +230,6 @@
|
|||||||
# http://shorewall.net/Documentation.htm#Interfaces
|
# http://shorewall.net/Documentation.htm#Interfaces
|
||||||
#
|
#
|
||||||
###############################################################################
|
###############################################################################
|
||||||
#ZONE INTERFACE BROADCAST OPTIONS GATEWAY
|
#ZONE INTERFACE BROADCAST OPTIONS
|
||||||
net eth0 detect norfc1918,routefilter,dhcp,tcpflags,logmartians,nosmurfs
|
net eth0 detect norfc1918,routefilter,dhcp,tcpflags,logmartians,nosmurfs
|
||||||
#LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE
|
#LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE
|
||||||
|
|||||||
@ -78,7 +78,7 @@
|
|||||||
# KERNEL.INFO.
|
# KERNEL.INFO.
|
||||||
###############################################################################
|
###############################################################################
|
||||||
#SOURCE DEST POLICY LOG LEVEL LIMIT:BURST
|
#SOURCE DEST POLICY LOG LEVEL LIMIT:BURST
|
||||||
fw net ACCEPT
|
$FW net ACCEPT
|
||||||
net all DROP info
|
net all DROP info
|
||||||
# The FOLLOWING POLICY MUST BE LAST
|
# The FOLLOWING POLICY MUST BE LAST
|
||||||
all all REJECT info
|
all all REJECT info
|
||||||
|
|||||||
@ -201,12 +201,6 @@
|
|||||||
# significant but the list should have no embedded white
|
# significant but the list should have no embedded white
|
||||||
# space.
|
# space.
|
||||||
#
|
#
|
||||||
# GATEWAY This column is only meaningful if the 'default' OPTION
|
|
||||||
# is given -- it is ignored otherwise. You may specify
|
|
||||||
# the default gateway IP address for this interface here
|
|
||||||
# and Shorewall will use that IP address rather than any
|
|
||||||
# that it finds in the main routing table.
|
|
||||||
#
|
|
||||||
# Example 1: Suppose you have eth0 connected to a DSL modem and
|
# Example 1: Suppose you have eth0 connected to a DSL modem and
|
||||||
# eth1 connected to your local network and that your
|
# eth1 connected to your local network and that your
|
||||||
# local subnet is 192.168.1.0/24. The interface gets
|
# local subnet is 192.168.1.0/24. The interface gets
|
||||||
@ -236,7 +230,7 @@
|
|||||||
# http://shorewall.net/Documentation.htm#Interfaces
|
# http://shorewall.net/Documentation.htm#Interfaces
|
||||||
#
|
#
|
||||||
###############################################################################
|
###############################################################################
|
||||||
#ZONE INTERFACE BROADCAST OPTIONS GATEWAY
|
#ZONE INTERFACE BROADCAST OPTIONS
|
||||||
net eth0 detect tcpflags,dhcp,routefilter,norfc1918,nosmurfs,logmartians
|
net eth0 detect tcpflags,dhcp,routefilter,norfc1918,nosmurfs,logmartians
|
||||||
loc eth1 detect tcpflags,detectnets,nosmurfs
|
loc eth1 detect tcpflags,detectnets,nosmurfs
|
||||||
dmz eth2 detect
|
dmz eth2 detect
|
||||||
|
|||||||
@ -84,7 +84,7 @@
|
|||||||
loc net ACCEPT
|
loc net ACCEPT
|
||||||
# If you want open access to the Internet from your Firewall
|
# If you want open access to the Internet from your Firewall
|
||||||
# remove the comment from the following line.
|
# remove the comment from the following line.
|
||||||
#fw net ACCEPT
|
#$FW net ACCEPT
|
||||||
# Also If You Wish To Open Up DMZ Access To The Internet
|
# Also If You Wish To Open Up DMZ Access To The Internet
|
||||||
# remove the comment from the following line.
|
# remove the comment from the following line.
|
||||||
#dmz net ACCEPT
|
#dmz net ACCEPT
|
||||||
|
|||||||
@ -201,12 +201,6 @@
|
|||||||
# significant but the list should have no embedded white
|
# significant but the list should have no embedded white
|
||||||
# space.
|
# space.
|
||||||
#
|
#
|
||||||
# GATEWAY This column is only meaningful if the 'default' OPTION
|
|
||||||
# is given -- it is ignored otherwise. You may specify
|
|
||||||
# the default gateway IP address for this interface here
|
|
||||||
# and Shorewall will use that IP address rather than any
|
|
||||||
# that it finds in the main routing table.
|
|
||||||
#
|
|
||||||
# Example 1: Suppose you have eth0 connected to a DSL modem and
|
# Example 1: Suppose you have eth0 connected to a DSL modem and
|
||||||
# eth1 connected to your local network and that your
|
# eth1 connected to your local network and that your
|
||||||
# local subnet is 192.168.1.0/24. The interface gets
|
# local subnet is 192.168.1.0/24. The interface gets
|
||||||
@ -236,7 +230,7 @@
|
|||||||
# http://shorewall.net/Documentation.htm#Interfaces
|
# http://shorewall.net/Documentation.htm#Interfaces
|
||||||
#
|
#
|
||||||
###############################################################################
|
###############################################################################
|
||||||
#ZONE INTERFACE BROADCAST OPTIONS GATEWAY
|
#ZONE INTERFACE BROADCAST OPTIONS
|
||||||
net eth0 detect dhcp,tcpflags,norfc1918,routefilter,nosmurfs,logmartians
|
net eth0 detect dhcp,tcpflags,norfc1918,routefilter,nosmurfs,logmartians
|
||||||
loc eth1 detect tcpflags,detectnets,nosmurfs
|
loc eth1 detect tcpflags,detectnets,nosmurfs
|
||||||
#LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE
|
#LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE
|
||||||
|
|||||||
@ -84,7 +84,7 @@
|
|||||||
loc net ACCEPT
|
loc net ACCEPT
|
||||||
# If you want open access to the Internet from your Firewall
|
# If you want open access to the Internet from your Firewall
|
||||||
# remove the comment from the following line.
|
# remove the comment from the following line.
|
||||||
#fw net ACCEPT
|
#$FW net ACCEPT
|
||||||
net all DROP info
|
net all DROP info
|
||||||
# THE FOLLOWING POLICY MUST BE LAST
|
# THE FOLLOWING POLICY MUST BE LAST
|
||||||
all all REJECT info
|
all all REJECT info
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user