From fcf435bc16b1d4da01a04da2bf1fdd991ae2bde1 Mon Sep 17 00:00:00 2001 From: Tuomo Soini Date: Sun, 14 Feb 2016 22:13:55 +0200 Subject: [PATCH] Audit: use new headers Signed-off-by: Tuomo Soini --- docs/Audit.xml | 17 ++++++++--------- 1 file changed, 8 insertions(+), 9 deletions(-) diff --git a/docs/Audit.xml b/docs/Audit.xml index 2eac40e46..59c3d9b98 100644 --- a/docs/Audit.xml +++ b/docs/Audit.xml @@ -139,9 +139,8 @@ Example: - #SOURCE DEST POLICY LOG -# LEVEL -net fw DROP:audit + #SOURCE DEST POLICY +net $FW DROP:audit It is allowed to also specify a log level on audited policies resulting in both auditing and logging. @@ -170,8 +169,8 @@ net fw DROP:audit Example: - #ACTION SOURCE DEST PROTO -A_ACCEPT:info loc net ... + #ACTION SOURCE DEST PROTO +A_ACCEPT:info loc net ... @@ -330,12 +329,12 @@ A_ACCEPT:info loc net ... The parameters can be passed in the POLICY column of the policy file. - SOURCE DEST POLICY -net all DROP:Drop(audit):audit #Same as DROP:A_DROP:audit + #SOURCE DEST POLICY +net all DROP:Drop(audit):audit #Same as DROP:A_DROP:audit - SOURCE DEST POLICY -net all DROP:Drop(-,DROP) #DROP rather than REJECT Auth + #SOURCE DEST POLICY +net all DROP:Drop(-,DROP) #DROP rather than REJECT Auth The parameters can also be specified in shorewall.conf: