holm/shorewall_code
1
0
Fork 0
forked from extern/shorewall_code
Code Pull Requests Activity

modify the zone file format

Browse Source 
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2640 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
This commit is contained in:
judas_iscariote 2005-09-08 00:07:17 +00:00
parent 4eb43da334
commit 9e5acc19bd
1 changed files with 10 additions and 26 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

36
Shorewall-docs2/standalone.xml
View File

@ -166,25 +166,9 @@
a set of <emphasis>zones</emphasis>. In the one-interface sample a set of <emphasis>zones</emphasis>. In the one-interface sample
configuration, only one zone is defined:</para> configuration, only one zone is defined:</para>
<informaltable> <programlisting>#ZONE IPSEC OPTIONS IN OUT
<tgroup cols="2"> # ONLY OPTIONS OPTIONS
<thead> net</programlisting>
<row>
<entry align="center">Name</entry>
<entry align="center">Description</entry>
</row>
</thead>
<tbody>
<row>
<entry>net</entry>
<entry>The Internet</entry>
</row>
</tbody>
</tgroup>
</informaltable>
<para>Shorewall zones are defined in <ulink <para>Shorewall zones are defined in <ulink
url="Documentation.htm#Zones"><filename>/etc/shorewall/zones</filename></ulink>.</para> url="Documentation.htm#Zones"><filename>/etc/shorewall/zones</filename></ulink>.</para>
@ -312,18 +296,18 @@ all all REJECT info</programlisting>
<para><inlinegraphic fileref="images/BD21298_.gif" format="GIF" /></para> <para><inlinegraphic fileref="images/BD21298_.gif" format="GIF" /></para>
<para>Before starting Shorewall, you should look at the IP address of your <para>Before starting Shorewall, <emphasis role="bold">you should look at
external interface and if it is one of the above ranges, you should remove the IP address of your external interface and if it is one of the above
the <quote>norfc1918</quote> option from the entry in ranges, you should remove the <quote>norfc1918</quote> option from the
<filename>/etc/shorewall/interfaces</filename>.</para> entry in <filename>/etc/shorewall/interfaces</filename>.</emphasis></para>
</section> </section>
<section> <section>
<title>Enabling other Connections</title> <title>Enabling other Connections</title>
<para>Shorewall 2.0.0 and later include a collection of actions that can <para>Shorewall includes a collection of actions that can be used to
be used to quickly allow or deny services. You can find a list of the quickly allow or deny services. You can find a list of the actions
actions included in your version of Shorewall in the file included in your version of Shorewall in the file
<filename>/usr/share/shorewall/actions.std</filename>.</para> <filename>/usr/share/shorewall/actions.std</filename>.</para>
<para>Those actions that allow a connection begin with <para>Those actions that allow a connection begin with