forked from extern/shorewall_code
Clean up the introductory part of shorewall-rules.xml
Signed-off-by: Tom Eastep <teastep@shorewall.net>
This commit is contained in:
Tom Eastep
parent
965a8e8f68
commit
f21d6de4d6
@ -136,10 +136,8 @@
|
|||||||
<note>
|
<note>
|
||||||
<para>If you are not familiar with Netfilter to the point where you are
|
<para>If you are not familiar with Netfilter to the point where you are
|
||||||
comfortable with the differences between the various connection tracking
|
comfortable with the differences between the various connection tracking
|
||||||
states, then it is suggested that you omit the <emphasis
|
states, then it is suggested that you place all of your rules in the NEW
|
||||||
role="bold">ESTABLISHED</emphasis> and <emphasis
|
section (That's after the line that reads ?SECTION NEW').</para>
|
||||||
role="bold">RELATED</emphasis> sections and place all of your rules in
|
|
||||||
the NEW section (That's after the line that reads ?SECTION NEW').</para>
|
|
||||||
</note>
|
</note>
|
||||||
|
|
||||||
<warning>
|
<warning>
|
||||||
@ -148,8 +146,8 @@
|
|||||||
<emphasis role="bold">ALL, ESTABLISHED</emphasis> and <emphasis
|
<emphasis role="bold">ALL, ESTABLISHED</emphasis> and <emphasis
|
||||||
role="bold">RELATED</emphasis> sections must be empty.</para>
|
role="bold">RELATED</emphasis> sections must be empty.</para>
|
||||||
|
|
||||||
<para>An except is made if you are running Shorewall 4.4.27 or later and
|
<para>An exception is made if you are running Shorewall 4.4.27 or later
|
||||||
you have specified a non-default value for RELATED_DISPOSITION or
|
and you have specified a non-default value for RELATED_DISPOSITION or
|
||||||
RELATED_LOG_LEVEL. In that case, you may have rules in the RELATED
|
RELATED_LOG_LEVEL. In that case, you may have rules in the RELATED
|
||||||
section of this file.</para>
|
section of this file.</para>
|
||||||
</warning>
|
</warning>
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user